Allow access for inactive users for payroll group

Go to solution
Sruthi17
Kilo Sage

‎04-23-2025 10:23 PM

Hi Experts,

 

We have a OOTB business rule "Query Users" that checks if the logged in user has admin or user admin role. If the logged in user does not have the roles, then restricts access to the inactive users by addinga query condition in the query business rule.
Now that I want to allow access to the payroll group, but because its not very correct to edit the business rule, can anyone suggest best solution to implement this?

Business Rule:
When : Before Query

Condition: gs.getSession().isInteractive() && !(gs.hasRole("admin") || gs.hasRole("user_admin"))
Script: 

current.addActiveQuery();
0 Helpfuls
  • 386 Views
1 ACCEPTED SOLUTION

Go to solution
Robert H
Mega Sage

‎04-23-2025 10:40 PM

Hello @Sruthi17 ,

 

I've come across similar requirements a lot and found that there is no perfect solution. You basically have to choose between the following options:

 

1) Grant the user_admin role to the Payroll group. This will make them see the inactive users, but will also grant them other access that maybe they should not have.

 

2) Create a new role, e.g. "can_see_inactive_users", and grant it to the Payroll group. Then disable the OOTB Businesss Rule and create a copy that checks for this additional role as well.

 

Regards,

Robert

View solution in original post

2 REPLIES 2

Go to solution
Robert H
Mega Sage

‎04-23-2025 10:40 PM

Hello @Sruthi17 ,

 

I've come across similar requirements a lot and found that there is no perfect solution. You basically have to choose between the following options:

 

1) Grant the user_admin role to the Payroll group. This will make them see the inactive users, but will also grant them other access that maybe they should not have.

 

2) Create a new role, e.g. "can_see_inactive_users", and grant it to the Payroll group. Then disable the OOTB Businesss Rule and create a copy that checks for this additional role as well.

 

Regards,

Robert

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron

‎04-23-2025 11:25 PM

@Sruthi17 

Approach shared by @Robert H is the best possible way.

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader