snc_read_only role - where to find the properties for it?

Attila Beregvar · ‎01-10-2022

Hello Community,

Please help me where to find the system properties to configure the SNC_READ_ONLY role. In these articles, it is mentioned that on the sys_properties table there should be the settings for this role, like:

glide.security.snc_read_only_role.tables.exempt_create
glide.security.snc_read_only_role.tables.exempt_write
glide.security.snc_read_only_role.tables.exempt_delete

Articles:

https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0687016

https://docs.servicenow.com/bundle/rome-platform-administration/page/administer/user-administration/concept/c_ReadOnlyRole.html

However, I cannot find these properties anywhere. I've checked on mutliple instances (the needed plugin "com.snc.read_only.role" is activated and I can use the role, all good), even with elevated security rights, but the settings are nowhere.

Thanks!

Allen Andreas · ‎01-10-2022

Hi,

Understandable.

Per all the searching I did and documentation I reviewed before simply replying, I didn't find anything specific to them existing by default. I did see documentation towards adding them though....indicating ServiceNow has said to create them.

Here's a support article about a related issue with the read-only role, but the verbiage and how it's said in their "resolution" is what we're interested in: https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0817646

Please mark reply as Helpful/Correct, if applicable. Thanks!

Please consider marking my reply as Helpful and/or Accept Solution, if applicable. Thanks!

View solution in original post

Allen Andreas · ‎01-10-2022

Hi,

You are correct, I don't see them either.

Usually, when this occurs, we'd need to create them. It's best to initially create them per the default settings as referenced here: https://docs.servicenow.com/bundle/rome-platform-administration/page/administer/user-administration/... and then adjust as needed.

Please mark reply as Helpful/Correct, if applicable. Thanks!

Please consider marking my reply as Helpful and/or Accept Solution, if applicable. Thanks!

Attila Beregvar · ‎01-10-2022

Hello Allen,

Thanks for checking, your comment is helpful! I will wait a little bit more if someone has already done it or have another suggestion, than I will try this myself.

Allen Andreas · ‎01-10-2022

Hi,

Understandable.

Per all the searching I did and documentation I reviewed before simply replying, I didn't find anything specific to them existing by default. I did see documentation towards adding them though....indicating ServiceNow has said to create them.

Here's a support article about a related issue with the read-only role, but the verbiage and how it's said in their "resolution" is what we're interested in: https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0817646

Please mark reply as Helpful/Correct, if applicable. Thanks!

Please consider marking my reply as Helpful and/or Accept Solution, if applicable. Thanks!

Sean Witt · ‎11-18-2024

I did what @Allen Andreas describes, creating a new system property following the guidelines described in the Product Documentation page. For my use case, the table to add as allowable for write access/edits was for approvals, because these mostly read only auditors still need to be able to approve or reject some system generated approvals. So the new property looked like the image below, and works as desired/expected: