Snc_external role access

prateek saharan
Tera Contributor

I have established Tprm in my PDI and a vendor contact can access svdp that is third party portal on my PDI but on other instance that same functionality is not working as a vendor contact with snc_external role can't access svdp portal but is i remove snc external role and only give vendor contact role it works perfectly.

Suggest me with possible reasons.

4 REPLIES 4

Community Alums
Not applicable

Hi @prateek saharan ,

Third-party contacts are the individuals that represent the third party. By using the third-party portal, they can respond to questionnaires, work on tasks, and address issues that your third-party risk assessment team raises. Third-party contacts are either primary or secondary contacts. The primary contact is the assigned individual who receives the assessment questionnaires. Each third party must have at least one primary contact. The Third-party Risk (TPR) manager [sn_vdr_risk_asmt.vendor_risk_manager], TPR assessor [sn_vdr_risk_asmt.vendor_assessor], or the primary contact can create third-party contacts.

You assign the primary contact responsibility to the third-party contact who can directly answer assessment questions or assign another contact at the third party to answer the questions. Primary contacts can manage other contacts for the third party.

Third-party contacts are automatically assigned two roles: vendor_contact and snc_external. The vendor_contact role provides third-party contacts with access to the Third-party portal, while the snc_external role is a safeguard that restricts access only to the portal. The snc_external role helps prevent any unauthorized entry into your instance. For more information, see Set up third-party contacts.

Note: Third-party contacts see your organization's name in all references on the Third-party portal. You specify the name in the sn_vdr_risk_asmt.company.name property setting. See Configure TPRM properties.
 

Thanks for the information about third party but I want to know what might be a possible reason that snc_external user that is vendor contact can't access third party portal on my company's instance.

Hey @prateek saharan , check your Access Controls table for a record with name=* and type=ui_page (https://<your-instance>.service-now.com/sys_security_acl_list.do?sysparm_query=type%3Dui_page%5Ename%3D*&sysparm_view=). This rule will probably have requires role = snc_internal, but not snc_external. If you add snc_external, it should allow your vendor contacts to access the Vendor Portal. 

@loman_ontotem would the solution you referenced here allow snc_external to ALL ui pages? not just the vendor portal?