Assign user role
You can assign roles to control user access to specific features, capabilities, and data in the Telecommunications Network Inventory application. These assigned roles enable or prevent access to specific forms and processes by users with the specified roles only.
- To assign a role to a user, see Assign a role to a user.
- To assign a role to a group, see Assign a role to a group.
The Telecommunications Network Inventory provides the following roles:
| Role | Description |
|---|---|
| Inventory Admin [sn_ni_core.inventory_template_admin] | Role that enables a user with create, read, update, and delete access to all Telecommunications Network Inventory application-related functions. |
| Inventory Catalog Manager [sn_ni_core.telco_inventory_catalog_manager] | Role that enables a user with create, read, edit, and delete access to the metadata for all network inventory entities. This role also enables the user to associate the metadata of the different entities. |
| Inventory Template Manager [sn_ni_core.inventory_template_manager] | Role that enables a user with create, read, edit, and delete access to the network inventory templates for the new or existing entities. Also, this role enables the user to perform a Create, Read, Update, Delete (CRUD) operation on the default template. |
| Inventory Agent [sn_ni_core.inventory_agent] | Role that enables a user with the following permissions:
Note: To modify the model and model relationships tables, a user assigned with the Inventory Agent role must also have either the Asset or Inventory User roles. |
| Inventory Number Manager [sn_inv_num_mgmt.inventory_number_manager] | Role that enables a user with the following permissions:
|
Starting with the Telecommunications Network Inventory (v12.1) June 2026 release, the following standard ServiceNow platform roles no longer have read access to specific TNI tables. This change was made to confirm that subscription consumption accurately reflects only the products a customer has purchased.
If your users are assigned any of the roles listed below, they will no longer be able to read or query the affected tables. You can explicitly grant access by assigning the appropriate TNI-specific roles to those users.
Affected tables and roles
| Table | Role removed | ACL type removed |
| tni_entity | asset | Read, Report view |
| tni_entity | sn_cmdb_user | Read, Report view |
| tni_entity | cmdb_read | Read |
| tni_entity | itil | Read, Report view |
| sn_ni_core_licensing_resource_count | usage_admin | Read, Report view |
Note: The tni_entity table is owned by TNI Core and is populated when a configuration item (CI) is created via TNI. The sn_ni_core_licensing_resource_count table is owned by TNI Core and stores licensing resource count data.