ServiceNow常用角色和分组
为什么80%的码农都做不了架构师?>>>
A role is a category assigned to a user or group of users that defines access privileges to functionality in the Service-now platform. All groups or users assigned to a role are granted the same system access. Roles can also contain other roles, and any access granted to a parent role will be granted to any role that it contains. There are numerous roles in Service-now Incident and, depending on the size and function of your organization or department, these roles can overlap. A single individual can perform two or more of these roles as part of his or her responsibilities, but the functions assigned to a particular role remain the same. The following is a list of default roles which are present in the system. Roles can be added or altered at any time.
Role | Description | ||
admin |
The System Administrator role. This role has special access to all system features, functions, and data because administrators can override ACL rules and pass all role checks. Consider these implications when using admin overrides on ACLs.
If you have sensitive information, such as HR records, that you need to protect, you must create a custom admin role for that area and train a person authorized to see those records to act as the administrator. Also note the Special Administrative Roles.
|
||
agent_admin | Can download and administer the system's built-in agent | ||
approval_admin | Can view and update all approvals, not just their own. | ||
assignment_rule_admin | Can manage Assignment Rules | ||
asset | Can manage hardware and software assets | ||
catalog | Has access to Services catalog requests | ||
catalog_admin | Can manage the Service Catalog application, including Catalog categories and items | ||
category_manager | Can create, edit, and delete model categories | ||
contract_manager | Can create, edit, and delete contract through the Contract Management application | ||
ecmdb_admin | Can administer the CMDB | ||
filter_admin | Can manage filters | ||
filter_global | Can create global filters | ||
filter_group | Can create filters that belong to groups of which the user is a member | ||
gauge_maker | Can create gauges from reports or charts | ||
image_admin | Can manage image files on the Images [db_image] table | ||
impersonator | Can impersonate. Does not allow impersonation of admin users. | ||
import_admin | Can manage all aspects of Import Sets and imports | ||
import_scheduler | Can schedule imports | ||
import_set_loader | Can load Import Sets | ||
import_transformer | Can manage Import Set Transform Maps and run transforms | ||
inventory_admin | Can create and delete stock information. Only users with the inventory_admin role can edit stock rules, stockrooms, and stockroom types. | ||
inventory_user | Has access to stock information. Can create and manage transfer orders. | ||
itil | Can perform standard actions for an ITIL helpdesk technician. Can open, update, close incidents, problems, changes, config management items. By default, only users with the itil role can have tasks assigned to them | ||
itil_admin | Possesses more privileges than the itil role and is intended for team leads. This role has the ability to delete incidents, problems, changes, and other related entities | ||
knowledge | Can create, edit, and review Knowledge Base articles | ||
knowledge_admin | Can manage the Knowledge Base | ||
list_updater | Can use "Update Entire List" and "Update Selected" menu options on lists | ||
maint | Reserved for ServiceNow use | ||
mid_server | Role that any MID server user should be granted. This role gives the MID server access to the tables it ordinarily uses. | ||
model_manager | Can create new CMDB models. Model manager can control the base models and any model extensions that are not hardware, software, or consumables. Hardware and consumable models are controlled by the asset manager role (asset). Software models are control by the software asset manager role (sam). | ||
nobody |
The "nobody" role means that nobody has access - not even admin or maint.
|
||
personalize | Can personalize forms, lists, rules, controls, scripts | ||
personalize_choices | Can personalize choices and predefined responses for non-Journal fields designated as choice or suggestion fields | ||
personalize_control | Can personalize controls on lists, such as filters, links, and buttons | ||
personalize_dictionary | Can personalize dictionary entries and labels | ||
personalize_form | Can personalize forms | ||
personalize_list | Can personalize lists | ||
personalize_responses | Can personalize predefined responses for Journal fields designated as suggestion fields | ||
personalize_rules |
Can personalize Business Rules and scripts. This role contains the following, specialized roles for granting selective, administrative access to rules and scripts:
|
||
personalize_styles | Can personalize field styles | ||
personalize_ui | Can personalize forms and lists | ||
public | No login is required to access features or functions with the public role | ||
release_admin | Can edit Release history for a Release | ||
report_admin | Can manage reports | ||
report_global | Can create global reports | ||
report_group | Can create reports and share reports with groups that the user is a member of. Users with this role can edit reports shared by other users in the group. | ||
report_publisher | Can make reports available on a public page | ||
report_scheduler | Can schedule a report to be emailed | ||
script_fix_admin | Can manage fix scripts (Calgary release). | ||
soap | Can query, create, update, and delete records on all tables, as well as execute scripts | ||
soap_create | Can create records on all tables and columns | ||
soap_delete | Can delete records on all tables and columns | ||
soap_ecc | Can query, create, and update on the ECC Queue table only | ||
soap_query | Can query records on all tables and columns | ||
soap_query_update | Can query and update records on all tables and columns | ||
soap_script | Can execute business rule endpoint function via script.do | ||
soap_update | Can update records on all tables and columns | ||
survey_admin | Can manage Survey Masters, Questions, and Instances | ||
survey_reader | Can read Survey Instances and Responses | ||
task_editor | Can edit protected task fields | ||
template_editor | Can edit/modify templates. Included in the itil role out-of-box | ||
template_editor_global | Can create templates for global use | ||
template_editor_group | Can create templates for groups | ||
template_scheduler | Can schedule template-based record creation | ||
text_search_admin | Can customize Global Text Search groups and tables | ||
timecard_admin | Enables users to approve, modify, and delete the timecards of other users | ||
ts_admin | Can administer Zing text search. | ||
user | Available for customer use, has no function out-of-box | ||
user_admin | Can administer users, groups, locations, and companies | ||
view_changer | Can switch active views | ||
workflow_admin | Can create, edit, publish or delete graphical workflows | ||
workflow_creator | Can create new graphical workflows | ||
workflow_publisher | Can publish graphical workflows |
转载于:https://my.oschina.net/julycn/blog/331769
ServiceNow常用角色和分组相关推荐
- 大数据技术之_17_Storm学习_Storm 概述+Storm 基础知识+Storm 集群搭建+Storm 常用 API+Storm 分组策略和并发度
大数据技术之_17_Storm学习 一 Storm 概述 1.1 离线计算是什么? 1.2 流式计算是什么? 1.3 Storm 是什么? 1.4 Storm 与 Hadoop 的区别 1.5 Sto ...
- MYSQL常用函数以及分组操作
SELECT CONVERT("234",SIGNED); SELECT CAST("123" AS SIGNED); SELECT "124&quo ...
- oracle常用角色权限,Oracle角色、权限的一些常用视图 - 一夜寒江
Oracle角色.权限的一些常用视图 ORACLE中数据字典视图分为3大类 , 用前缀区别,分别为:USER,ALL 和 DBA,许多数据字典视图包含相似的信息. USER_*: 有关用户所拥有的对象 ...
- python可视化51|最常用4个分组( Groups)关系图
❝ 本文分享最常用「4个分组( Groups)关系图」. ❞ 目录 七.分组( Groups)关系图 48.聚类树形图(Dendrogram) 展示通过聚类形成的组内及组间相似性水平. import ...
- 2D横板动作游戏常用角色移动逻辑(转)
这里所说的横版动作游戏,包含且不限于2D横版动作游戏.横版跑酷游戏.横版格斗游戏,只要逻辑层是横板的,且对于判定需要及高精度的(比如在动作游戏中就是拳头命中身体才算中,而不是WoW中,虽然近战攻击有时 ...
- AI云边端EasyCVR平台新功能解析:支持为角色选择多级分组
EasyCVR平台可支持多类型设备.多协议方式接入,具体包括:国标GB28181协议.RTMP.RTSP/Onvif.海康Ehome,以及海康SDK.大华SDK.华为SDK.宇视SDK.乐橙SDK.萤 ...
- 计算机分组教学,中职计算机教学分组协作式学习论文
中职计算机教学分组协作式学习论文 摘要:随着信息技术的不断发展,计算机技术在人们的日常生活中的应用越来越广泛,计算机技术和网络信息技术以及多媒体技术已经逐渐渗入到人们的日常生活之中,计算机技术对人类的 ...
- Oracle常用命令
Oracle 安装自动生成sys用户和system用户 sys 超级用户 具有最高权限 具有sysDBA角色,有create database权限 该用户默认密码是change_in_install ...
- 第九章、Ansible基于roles角色管理大项目
第九章.Ansible基于roles角色管理大项目 文章目录 一.利用角色构造ansible playbook 1.在playbook中使用ansible角色 2.控制执行顺序 3.导入角色任务 二. ...
- 数据蒋堂 | 有序分组
来源:数据蒋堂 作者:蒋步星 本文长度为1500字,建议阅读3分钟 本文为你讲解以有序集合为考虑对象时,如何考虑成员次序对分组的影响. 我们知道,SQL延用了数学上的无序集合概念,所以SQL的分组并不 ...
最新文章
- 微信小程序开发第二弹
- python爬虫案例-Python3爬虫三大案例实战分享
- 本地yum仓库和http方式的yum仓库。
- Gradle+IDEA使用说明
- Spring Boot 整合携程Apollo 配置中心
- Linux就该这么学 20181008(第十三章BIND)
- OSChina 周六乱弹 —— 那些神一样的电视剧
- 御剑+php,ps创意制作一个御剑飞行效果教程
- 软件调试是鸡肋?你的认知决定你的层次!
- win7安装VScode(Visual Studio Code)
- magicbook java开发_荣耀MagicBook2019 Intel版值得买吗 MagicBook2019 Intel版笔记本详细评测...
- 电动自行车,电动滑板车出口欧盟CE认证怎么办理通过
- 深入理解Flash的沙箱 – Application Domains
- 网页截图及TDK抓取
- python迅雷下载任务出错_迅雷下载任务出错的原因和解决方法 来研究下吧
- 第七十四章 Caché 函数大全 $WREVERSE 函数
- python运维系统开发_Python系统运维开发实战
- 卓有成效的管理者——第5章 要事优先
- APP - 查询名下微信实名账户(可注销微信封号账户支付功能)
- 如何优雅的面对一坨翔~~感悟编程代码