SAM Health Check Portal

mikew_samexpert · ‎08-24-2023

Hey team,

I'm confused as to why executing scans via the Health check feature can only be performed by the 'admin' role. Typically SAM folks won't have admin access to the instance and even if the Platform Admin executes the scan, none of the SAM roles can view the results - they are only viewable by the admin.

It's a great feature - it would be great if we, as SAM professionals, could use it! Anyone have a view as to why ServiceNow don't allow the sam_admin role to use this feature?

MIke.

Scott Halverson · ‎08-29-2023

I don't know the answer, but I set out to figure out what roles were needed. I agree, the primary user of this is a person with the role sam_user or sam_admin. Good one to submit a product idea.

View solution in original post

MikeW_SAMBeast · ‎03-08-2024

Dave - I seem to recall that I was informed that this issue was fixed in either V or W and that the sam_admin role would be able to execute the health scan.

David Schafer · ‎03-08-2024

Thanks Mike. Our SAM folks can indeed execute the scan (on Vancouver patch 5)... but can't see the results. The only OOB ACL's currently configured in that regard are for "scan_user"... not suitable IMHO for SAM folks. I'll reach out to support RE: "sam_manager" to see if it's actually a thing before I pursue a workaround.

Thanks again.

mikew_samexpert · ‎08-30-2023

Thanks, Scott - I'll document this requirement in the Idea Portal.