How to get access to the enitre System Logs module?

Go to solution
Community Alums
Not applicable

‎07-23-2018 02:18 PM

I want to give the integration person(Asset Team) a role "integration_specialist" and provide access to the System Logs module.

He will be running the SCCM Integration and uCMDB integration so he wants to look into logs that support integration.

I see only system Logs > Outbound HTTP Request visible for him. Also, added this new role to the read ACL of syslog_transaction. Still no help.

Has anyone got this working?

0 Helpfuls
  • 4,800 Views
1 ACCEPTED SOLUTION

Go to solution
Jeff Currier
ServiceNow Employee
ServiceNow Employee

‎07-23-2018 06:55 PM

I have been successful with some tests of this.  First I created a security_log role.  I added that role to the System logs Application menu.  I then modified the ACLs (by using elevated permissions) for sysevent and syslog.  I then assign the security_log role with a user with pretty much no other permissions and that user was able to see the events log.  The syslog didn't show up in the menu, so I could do some more work there, but putting syslog.list into the navigator did bring back the entire syslog, so it can be done.  If you want some of the other tables, just keep adding that role to the ACLs.

 

Be careful as there may be data in the logs you don't want your interface person to see.

-HTH,

Jeff

View solution in original post

3 REPLIES 3

Go to solution
Jeff Currier
ServiceNow Employee
ServiceNow Employee

‎07-23-2018 06:55 PM

I have been successful with some tests of this.  First I created a security_log role.  I added that role to the System logs Application menu.  I then modified the ACLs (by using elevated permissions) for sysevent and syslog.  I then assign the security_log role with a user with pretty much no other permissions and that user was able to see the events log.  The syslog didn't show up in the menu, so I could do some more work there, but putting syslog.list into the navigator did bring back the entire syslog, so it can be done.  If you want some of the other tables, just keep adding that role to the ACLs.

 

Be careful as there may be data in the logs you don't want your interface person to see.

-HTH,

Jeff

Go to solution
Community Alums
Not applicable
In response to Jeff Currier

‎07-24-2018 07:22 AM

It worked awesome, thankyou so much.

 

Rajini

0 Helpfuls

Go to solution
spike
Mega Sage
In response to Community Alums

‎08-24-2023 02:59 AM

I know this is old, but if it helps, the reason the submenu didn't appear is that the role also needs to be applied to it, not just the top application menu.

0 Helpfuls