Components installed with ITSM Roles - Change Management

  • Release version: Xanadu
  • Updated August 1, 2024
  • 1 minute to read

    • Several user roles are installed with the activation of the ITSM Roles — Change Management plugin (com.snc.itsm.roles.change_management). Security ACLs to support the security model for Change Management and related functionality are also installed.

    When you install the ITSM Roles — Change Management plugin (com.snc.itsm.roles.change_management), the plugin updates the Security Access Control Lists (ACLs), integrating revised scripts, and other files to overhaul the security model for these applications.

    Note:
    The Application Files table lists the components that are installed with this application. For instructions on how to access this table, see Find components installed with an application.

    Roles installed

    Role title [name] Description Contains roles
    Change read

    [sn_change_read]

    		 Read access to the Change Management application and related records.
    Note:
    A user with the sn_change_read role can view all change requests as well as the CAB workbench.
    • sn_cmdb_user
    • dependency_views
    • view_changer
    • cmdb_read
    • app_service_user
    • cmdb_query_builder_read
    Change write

    [sn_change_write]

    		 Write access to the Change Management application and related records.
    • sn_change_read
    • template_editor
    • cmdb_query_builder
    Incident read

    [sn_incident_read]

    		 Read access to the Incident Management application and related records.
    Note:
    An ESS user (user with no role) can view only those incidents that they create or someone else creates on their behalf. A user with the sn_incident_read role can view all incidents as well as the major incident workbench.
    • dependency_views
    • agent_workspace_user
    • view_changer
    • cmdb_read
    • cmdb_query_builder_read
    Incident write

    [sn_incident_write]

    		 Write access to the Incident Management application and related records.
    • sn_incident_read
    • template_editor
    Problem read

    [sn_problem_read]

    		 Read access to the Problem Management application and related records. NA
    Problem write

    [sn_problem_write]

    		 Write access to the Problem Management application and related records.
    • sn_problem_read
    • template_editor
    sn_request_read Read access to the Request (sc_request) or Requested Item (sc_req_item) only for a user who is also an approver of the request or requested item.
    Note:
    As there are future updates expected for the sn_request_read role, do not assign it to users without the business_stakeholder role.
    		 NA
    sn_request_write Write access to the Request (sc_request) or Requested Item (sc_req_item).
    • task_editor
    • dependency_views
    • agent_workspace_user
    • view_changer
    • cmdb_read
    • cmdb_query_builder_read
    • sn_request_read
    sn_request_comment_write Write access to the comments for the Requested Item (sc_req_item).
    Note:
    The sn_request_comment_write role alone does not give access to comments write, you will need write access for the table.
    		 NA