How to restrict personalize_dictionary role?

Szilard · ‎01-19-2022

Hello Community!

I want to restrict the personalize_dictionary role to only create or rename tables&fields under cmdb_ci table, nowhere else.
Basically what I need is to prevent "admin" access other tables but cmdb_ci and its descendants.

Is there a way to do that?

Thanks in advance!

Periyasamy P · ‎01-25-2022

You can try this out,

1. Create new role "cmdb_personalize_dictionary" and add OBB role "personalize_dictionary" as child

2. Then add query BR in affected tables listed below if user contains custom role "cmdb_personalize_dictionary". So that, user can access items only that are related to cmdb tables

OOB "personalize_dictionary" grants access to below tables,

sys_dictionary

sys_db_object

sys_security_acl

sys_documentation

sys_number