question ServiceNow: Access to &quot;xmlstats.do&quot; without Admin Rights? in Community Central forum https://www.servicenow.com/community/community-central-forum/servicenow-access-to-quot-xmlstats-do-quot-without-admin-rights/m-p/3292582#M3427 <DIV>Hi everyone,</DIV><DIV>&nbsp;</DIV><DIV>We are running an on-premises instance of ServiceNow in our organization. As part of our monitoring setup, we want to regularly query the "xmlstats.do" endpoint to check system availability and health.</DIV><DIV>&nbsp;</DIV><DIV>Currently, access to this endpoint is only possible using an admin account. However, for security reasons, we would like to avoid using admin credentials for automated or recurring monitoring tasks.</DIV><DIV>&nbsp;</DIV><DIV>Our question is:</DIV><DIV>Is there a way to grant a non-admin user permission to access "xmlstats.do"?</DIV><DIV>If so, which roles, ACLs, or configurations would be required?</DIV><DIV>&nbsp;</DIV><DIV>We were pointed to four relevant sys_properties. Two of them seem potentially relevant to our use case:</DIV><DIV><SPAN>• glide.securiy.diag.txns.acl</SPAN></DIV><DIV><SPAN>• glide.custom.ip.authenticate.allow</SPAN></DIV><DIV>&nbsp;</DIV><DIV>However, these settings seem to apply to entire IP ranges rather than specific users or roles.</DIV><DIV>&nbsp;</DIV><DIV>I would really appreciate any insights, experiences, or best practices from the community — maybe someone has faced a similar challenge or already implemented a secure solution.</DIV><DIV>&nbsp;</DIV><DIV>Thanks in advance for your support!</DIV> Wed, 18 Jun 2025 11:01:56 GMT AyhanP 2025-06-18T11:01:56Z ServiceNow: Access to "xmlstats.do" without Admin Rights? https://www.servicenow.com/community/community-central-forum/servicenow-access-to-quot-xmlstats-do-quot-without-admin-rights/m-p/3292582#M3427 <DIV>Hi everyone,</DIV><DIV>&nbsp;</DIV><DIV>We are running an on-premises instance of ServiceNow in our organization. As part of our monitoring setup, we want to regularly query the "xmlstats.do" endpoint to check system availability and health.</DIV><DIV>&nbsp;</DIV><DIV>Currently, access to this endpoint is only possible using an admin account. However, for security reasons, we would like to avoid using admin credentials for automated or recurring monitoring tasks.</DIV><DIV>&nbsp;</DIV><DIV>Our question is:</DIV><DIV>Is there a way to grant a non-admin user permission to access "xmlstats.do"?</DIV><DIV>If so, which roles, ACLs, or configurations would be required?</DIV><DIV>&nbsp;</DIV><DIV>We were pointed to four relevant sys_properties. Two of them seem potentially relevant to our use case:</DIV><DIV><SPAN>• glide.securiy.diag.txns.acl</SPAN></DIV><DIV><SPAN>• glide.custom.ip.authenticate.allow</SPAN></DIV><DIV>&nbsp;</DIV><DIV>However, these settings seem to apply to entire IP ranges rather than specific users or roles.</DIV><DIV>&nbsp;</DIV><DIV>I would really appreciate any insights, experiences, or best practices from the community — maybe someone has faced a similar challenge or already implemented a secure solution.</DIV><DIV>&nbsp;</DIV><DIV>Thanks in advance for your support!</DIV> Wed, 18 Jun 2025 11:01:56 GMT https://www.servicenow.com/community/community-central-forum/servicenow-access-to-quot-xmlstats-do-quot-without-admin-rights/m-p/3292582#M3427 AyhanP 2025-06-18T11:01:56Z