Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

Should not allow to add ITIL or Admin roles to Contact users

Sarah Bouil
Tera Expert

‎04-17-2024 05:35 AM

If I try to add itil or admin role to Contact users, I want to abort the action. Kindly assist me.

0 Helpfuls
  • 687 Views
16 REPLIES 16

Sarah Bouil
Tera Expert
In response to Krushna R Birla

‎04-17-2024 07:17 AM

1. I tried to add role to a ITIL or Admin role explicitly through a Roles related list- It's restricted and it should be fine

2. There is a Field Service group that contains ITIL, I tried to add a group into a user, the group is added and role ITIL is added also- But I should not allow right- it's failing, kindly assist me how to restrict itil or admin role if its inherit from a group also.

0 Helpfuls

Krushna R Birla
Kilo Sage
In response to Sarah Bouil

‎04-17-2024 07:34 AM

No, its working as expected. You have added BR on 'sys_user_has_role' user and role table. Not on group related table so it wont work. 

0 Helpfuls

Sarah Bouil
Tera Expert
In response to Krushna R Birla

‎04-17-2024 07:42 AM

I should also restrict from Group related table. Do I need to write another BR to restrict from Group related list table?

0 Helpfuls

Krushna R Birla
Kilo Sage
In response to Sarah Bouil

‎04-17-2024 07:50 AM

I think yes, write it on sys_user_grmember table. Refer below snapshot for your reference, Just click abort checkbox after implementing this in your instance

 

KrushnaRBirla_0-1713365399145.png

 

0 Helpfuls

Sarah Bouil
Tera Expert
In response to Krushna R Birla

‎04-17-2024 08:06 AM

This is not working and not helping me. 

0 Helpfuls