New role contained within a role not applied until refresh

scottatah · ‎09-25-2015

Hi Everyone,

All support staff have the ITIL role. We recently built a new table and gave access to it via role B. We then modified the ITIL role so that it contained role B. I was surprised to find out that support staff didn't automatically inherit role B. Rather, it seems I need to remove the ITIL role from their account and re-add it in order their accounts to recognize role B.

Is this normal within the world of permissions or ServiceNow? It seems odd to me, but I'm slightly new to the game. Is there a more proper or best practice for handling the scenario?

Thanks,

Scott

Michael Fry1 · ‎09-25-2015

I believe it is. If you just add a role to a user, that user will have to refresh the browser to utilize the new role. Even refreshing navigation won't refresh the roles.

Kalaiarasan Pus · ‎09-25-2015

As per my knowledge, the roles added will not be applicable for the current session if the user is already logged in. Log out and log in to verify

scottatah · ‎09-28-2015

I'm fine with a user needing to refresh their session, but in this case, SN doesn't even show the role as being applied to their account unless I remove and re-add the ITIL role (most parent role).

Example:

The user account contains the ITIL role:

Release_v2_user is contained within the ITIL role.:

Various rm_ roles are contained within Release_v2_user

So if a user has ITIL which contains Release_v2_user which contains various rm_ roles, it would make sense the user has the rm roles, but as you can see from the first picture they do not.

I have to remove the ITIL role (technically assigned by group) from the user and re-add it in order for them to receive the various rm_ roles:

Kalaiarasan Pus · ‎09-28-2015

I think it is expected to add these by default. Can you try checking it in any demo instance? It works as expected on my personal instance which is on Fuji