How can we restrict access to the CMDB workspace for specific users ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-15-2024 10:32 PM
Hello All,
I am looking for steps to restrict access to the CMDB workspace for just the CMDB admins.
Currently the CMDB workspace is accessible to all the users. Since the Intelligent search functionality on the Home tab isn't working as expected, we wanted to restrict users until it is fixed.
Your thoughts are much appreciated.
Thank you,
Praveen
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-15-2024 10:47 PM
Hi @praveenkshanmu
out-of-the-box roles such as cmdb_read, cmdb_write, or itil provide access to various functionalities within the CMDB. Identify if one of these roles is assigned to users who should access the CMDB workspace.
If you need a custom role specific for CMDB workspace access, you can create a new role.
Assign Roles to Appropriate Users/Groups
Create or Modify Access Control Rules (ACLs)
Click New to create a new Access Control rule.
- Define the following fields:
- Type: Select the type of access (e.g., Read, Write, Create, Delete).
- Operation: Specify the operation (usually read for general access).
- Name: Enter the table name (e.g., cmdb_ci for Configuration Items).
- Advanced: Use the script section to set conditions based on roles, for example:
(gs.hasRole(‘cmdb_workspace_access’) || gs.hasRole(‘admin’))
Please Mark this Helpful and Accepted Solution. If this Helps you to understand. This will help both the community and me..
- Keep Learning
Thanks & Regards
Deepak Sharma
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-16-2024 05:12 AM
change tole to cmdb admin here. This will limit the module access.
Please Mark this Helpful and Accepted Solution.
Regards,
Pratiksha
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-03-2024 10:38 PM
Hi Pratiksha,
I tried the above suggestion but it doesn't solve the problem. I changed the role to sn_cmdb_admin (default value was sn_cmdb_user) for the CMDB Workspace application and tried to impersonate a user with just ITIL role. That user could still access the CMDB workspace.
Thank you,
Praveen
