为什么80%的码农都做不了架构师?>>>   

A role is a category assigned to a user or group of users that defines access privileges to functionality in the Service-now platform. All groups or users assigned to a role are granted the same system access. Roles can also contain other roles, and any access granted to a parent role will be granted to any role that it contains. There are numerous roles in Service-now Incident and, depending on the size and function of your organization or department, these roles can overlap. A single individual can perform two or more of these roles as part of his or her responsibilities, but the functions assigned to a particular role remain the same.   The following is a list of default roles which are present in the system. Roles can be added or altered at any time.

Role Description
admin The System Administrator role. This role has special access to all system features, functions, and data because administrators can override ACL rules and pass all role checks. Consider these implications when using admin overrides on ACLs.

If you have sensitive information, such as HR records, that you need to protect, you must create a custom admin role for that area and train a person authorized to see those records to act as the administrator. Also note the Special Administrative Roles.

 Warning: Grant this privilege carefully.
agent_admin Can download and administer the system's built-in agent
approval_admin Can view and update all approvals, not just their own.
assignment_rule_admin Can manage Assignment Rules
asset Can manage hardware and software assets
catalog Has access to Services catalog requests
catalog_admin Can manage the Service Catalog application, including Catalog categories and items
category_manager Can create, edit, and delete model categories
contract_manager Can create, edit, and delete contract through the Contract Management application
ecmdb_admin Can administer the CMDB
filter_admin Can manage filters
filter_global Can create global filters
filter_group Can create filters that belong to groups of which the user is a member
gauge_maker Can create gauges from reports or charts
image_admin Can manage image files on the Images [db_image] table
impersonator Can impersonate. Does not allow impersonation of admin users.
import_admin Can manage all aspects of Import Sets and imports
import_scheduler Can schedule imports
import_set_loader Can load Import Sets
import_transformer Can manage Import Set Transform Maps and run transforms
inventory_admin Can create and delete stock information. Only users with the inventory_admin role can edit stock rules, stockrooms, and stockroom types.
inventory_user Has access to stock information. Can create and manage transfer orders.
itil Can perform standard actions for an ITIL helpdesk technician. Can open, update, close incidents, problems, changes, config management items. By default, only users with the itil role can have tasks assigned to them
itil_admin Possesses more privileges than the itil role and is intended for team leads. This role has the ability to delete incidents, problems, changes, and other related entities
knowledge Can create, edit, and review Knowledge Base articles
knowledge_admin Can manage the  Knowledge Base
list_updater Can use "Update Entire List" and "Update Selected" menu options on lists
maint Reserved for ServiceNow use
mid_server Role that any MID server user should be granted.  This role gives the MID server access to the tables it ordinarily uses.
model_manager Can create new CMDB models. Model manager can control the base models and any model extensions that are not hardware, software, or consumables. Hardware and consumable models are controlled by the asset manager role (asset). Software models are control by the software asset manager role (sam).
nobody The "nobody" role means that nobody has access - not even admin or maint.

 Warning: Applying the nobody role may be irreversible if applied to some important system functions.
personalize Can personalize forms, lists, rules, controls, scripts
personalize_choices Can personalize choices and predefined responses for non-Journal fields designated as choice or suggestion fields
personalize_control Can personalize controls on lists, such as filters, links, and buttons
personalize_dictionary Can personalize dictionary entries and labels
personalize_form Can personalize forms
personalize_list Can personalize lists
personalize_responses Can personalize predefined responses for Journal fields designated as suggestion fields
personalize_rules Can personalize Business Rules and scripts. This role contains the following, specialized roles for granting selective, administrative access to rules and scripts:

  • business_rule_admin

  • client_script_admin

  • ui_policy_admin

  • ui_action_admin
personalize_styles Can personalize field styles
personalize_ui Can personalize forms and lists
public No login is required to access features or functions with the public role
release_admin Can edit Release history for a Release
report_admin Can manage reports
report_global Can create global reports
report_group Can create reports and share reports with groups that the user is a member of. Users with this role can edit reports shared by other users in the group.
report_publisher Can make reports available on a public page
report_scheduler Can schedule a report to be emailed
script_fix_admin Can manage fix scripts (Calgary release).
soap Can query, create, update, and delete records on all tables, as well as execute scripts
soap_create Can create records on all tables and columns
soap_delete Can delete records on all tables and columns
soap_ecc Can query, create, and update on the ECC Queue table only
soap_query Can query records on all tables and columns
soap_query_update Can query and update records on all tables and columns
soap_script Can execute business rule endpoint function via script.do
soap_update Can update records on all tables and columns
survey_admin Can manage Survey Masters, Questions, and Instances
survey_reader Can read Survey Instances and Responses
task_editor Can edit protected task fields
template_editor Can edit/modify templates. Included in the itil role out-of-box
template_editor_global Can create templates for global use
template_editor_group Can create templates for groups
template_scheduler Can schedule template-based record creation
text_search_admin Can customize Global Text Search groups and tables
timecard_admin Enables users to approve, modify, and delete the timecards of other users
ts_admin Can administer Zing text search.
user Available for customer use, has no function out-of-box
user_admin Can administer users, groups, locations, and companies
view_changer Can switch active views
workflow_admin Can create, edit, publish or delete graphical workflows
workflow_creator Can create new graphical workflows
workflow_publisher Can publish graphical workflows

转载于:https://my.oschina.net/julycn/blog/331769

ServiceNow常用角色和分组相关推荐

  1. 大数据技术之_17_Storm学习_Storm 概述+Storm 基础知识+Storm 集群搭建+Storm 常用 API+Storm 分组策略和并发度

    大数据技术之_17_Storm学习 一 Storm 概述 1.1 离线计算是什么? 1.2 流式计算是什么? 1.3 Storm 是什么? 1.4 Storm 与 Hadoop 的区别 1.5 Sto ...

  2. MYSQL常用函数以及分组操作

    SELECT CONVERT("234",SIGNED); SELECT CAST("123" AS SIGNED); SELECT "124&quo ...

  3. oracle常用角色权限,Oracle角色、权限的一些常用视图 - 一夜寒江

    Oracle角色.权限的一些常用视图 ORACLE中数据字典视图分为3大类 , 用前缀区别,分别为:USER,ALL 和 DBA,许多数据字典视图包含相似的信息. USER_*: 有关用户所拥有的对象 ...

  4. python可视化51|最常用4个分组( Groups)关系图

    ❝ 本文分享最常用「4个分组( Groups)关系图」. ❞ 目录 七.分组( Groups)关系图 48.聚类树形图(Dendrogram) 展示通过聚类形成的组内及组间相似性水平. import ...

  5. 2D横板动作游戏常用角色移动逻辑(转)

    这里所说的横版动作游戏,包含且不限于2D横版动作游戏.横版跑酷游戏.横版格斗游戏,只要逻辑层是横板的,且对于判定需要及高精度的(比如在动作游戏中就是拳头命中身体才算中,而不是WoW中,虽然近战攻击有时 ...

  6. AI云边端EasyCVR平台新功能解析:支持为角色选择多级分组

    EasyCVR平台可支持多类型设备.多协议方式接入,具体包括:国标GB28181协议.RTMP.RTSP/Onvif.海康Ehome,以及海康SDK.大华SDK.华为SDK.宇视SDK.乐橙SDK.萤 ...

  7. 计算机分组教学,中职计算机教学分组协作式学习论文

    中职计算机教学分组协作式学习论文 摘要:随着信息技术的不断发展,计算机技术在人们的日常生活中的应用越来越广泛,计算机技术和网络信息技术以及多媒体技术已经逐渐渗入到人们的日常生活之中,计算机技术对人类的 ...

  8. Oracle常用命令

    Oracle 安装自动生成sys用户和system用户 sys 超级用户  具有最高权限 具有sysDBA角色,有create database权限 该用户默认密码是change_in_install ...

  9. 第九章、Ansible基于roles角色管理大项目

    第九章.Ansible基于roles角色管理大项目 文章目录 一.利用角色构造ansible playbook 1.在playbook中使用ansible角色 2.控制执行顺序 3.导入角色任务 二. ...

  10. 数据蒋堂 | 有序分组

    来源:数据蒋堂 作者:蒋步星 本文长度为1500字,建议阅读3分钟 本文为你讲解以有序集合为考虑对象时,如何考虑成员次序对分组的影响. 我们知道,SQL延用了数学上的无序集合概念,所以SQL的分组并不 ...

最新文章

  1. 微信小程序开发第二弹
  2. python爬虫案例-Python3爬虫三大案例实战分享
  3. 本地yum仓库和http方式的yum仓库。
  4. Gradle+IDEA使用说明
  5. Spring Boot 整合携程Apollo 配置中心
  6. Linux就该这么学 20181008(第十三章BIND)
  7. OSChina 周六乱弹 —— 那些神一样的电视剧
  8. 御剑+php,ps创意制作一个御剑飞行效果教程
  9. 软件调试是鸡肋?你的认知决定你的层次!
  10. win7安装VScode(Visual Studio Code)
  11. magicbook java开发_荣耀MagicBook2019 Intel版值得买吗 MagicBook2019 Intel版笔记本详细评测...
  12. 电动自行车,电动滑板车出口欧盟CE认证怎么办理通过
  13. 深入理解Flash的沙箱 – Application Domains
  14. 网页截图及TDK抓取
  15. python迅雷下载任务出错_迅雷下载任务出错的原因和解决方法 来研究下吧
  16. 第七十四章 Caché 函数大全 $WREVERSE 函数
  17. python运维系统开发_Python系统运维开发实战
  18. 卓有成效的管理者——第5章 要事优先
  19. APP - 查询名下微信实名账户(可注销微信封号账户支付功能)
  20. 如何优雅的面对一坨翔~~感悟编程代码

热门文章

  1. 我需要一个足够大的桌子
  2. 让ProgressPar动起来
  3. 優利系統眾裡尋“她”
  4. Elasticserch学习之分页
  5. Vue —— 移动端添加 fastclick
  6. cookie和session基础以及在Django中应用
  7. 【译】ObjectBox官方文档(4)——关系
  8. zabbix-3.0.3 mysql表分区的方法
  9. CFileDialog多选文件的最大数量
  10. 一个奇妙、离奇的算法题