How to use AD groups to manage the access of Service Catalog items visibility to Selected users.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-02-2018 04:11 AM
I have created 2 Service Catalog Items (New Hire & Termination). In order to make this visible to selected group of users, i have created User Criteria "onboarding/offboarding persmission" and added selected users in this criteria and it is working fine.
Besides User Criteria creation in ServiceNow, I would like know that is there any option available to manage user criteria permission from Active Directory level by creating an Active Directory group. This means when user is added in specific group in Active Directory, that permission should sync with User Criteria in ServiceNow. If this is possible , can anyone help me with steps to configure it?
Thanks
- Labels:
-
Service Catalog
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-02-2018 04:31 AM
Your user criteria can be group-based. Just create the groups in AD, then configure your LDAP import to import the groups (there are out-of-box examples for this). Once the groups are imported, you can create User Criteria records based off of them.
Please mark this answer as correct if I've answered your question. Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-02-2018 06:36 AM
This was already answered correctly. I'd just like to add that is the route we took with most catalog visibility as we have it set up so only mangers can order equipment or put in certain requests. Beings that we haven't gone to Service Portal yet, we have groups set up with roles created simply for visibility on our old and janky portal which was also used for our Service Catalog access for a long time too. User Criteria with LDAP imported groups is a MUCH easier and efficient way to do it though.
