Flow Designer – How to allow execution visibility without exposing data from underlying applications

test10 · Tuesday

Hi everyone,

I’m trying to design a secure access model for Flow Designer execution visibility in production, and I want to avoid exposing sensitive data from underlying applications.

Requirement

We need certain users (e.g., support teams, app owners) to:

View Flow execution history
See status (success/failure), timestamps, and duration
Perform basic troubleshooting

But we do NOT want them to:

Modify or execute flows
Gain visibility into sensitive data stored in other applications/tables that flows interact with

I already tried below roles . They have access to go into flow designer, however they are not able to click into flow execution. I'm getting error message that use don't the the appropriate permission.

Out-of-the-box roles like:

flow_operator (view execution details)
fd_read / fd_read_operations (read-only Flow Designer access)

test10 · Tuesday

I provided myself with fd_read, flow_operation and flow_report_viewer and when I try clicking on view flow execution, I'm seeing this error message.

Ankur Bawiskar · Tuesday

@test10

In that case you already achieved your requirement

what's extra required?

💡 If my response helped, please mark it as correct ✅ and close the thread 🔒— this helps future readers find the solution faster! 🙏

Regards,
Ankur
✨ Certified Technical Architect || ✨ 10x ServiceNow MVP || ✨ ServiceNow Community Leader