| Role | Description |
| admin | The System Administrator role. This role has special access to all system features, functions, and data because administrators can override ACL rules and pass all role checks. Consider these implications when using admin overrides on ACLs. If you have sensitive information, such as HR records, that you need to protect, you must create a custom admin role for that area and train a person authorized to see those records to act as the administrator. Also note the Special Administrative Roles.
| Warning: Grant this privilege carefully. |
|
| agent_admin | Can download and administer the system's built-in agent |
| approval_admin | Can view and update all approvals, not just their own. |
| assignment_rule_admin | Can manage Assignment Rules |
| asset | Can manage hardware and software assets |
| catalog | Has access to Services catalog requests |
| catalog_admin | Can manage the Service Catalog application, including Catalog categories and items |
| category_manager | Can create, edit, and delete model categories |
| contract_manager | Can create, edit, and delete contract through the Contract Management application |
| ecmdb_admin | Can administer the CMDB |
| filter_admin | Can manage filters |
| filter_global | Can create global filters |
| filter_group | Can create filters that belong to groups of which the user is a member |
| gauge_maker | Can create gauges from reports or charts |
| image_admin | Can manage image files on the Images [db_image] table |
| impersonator | Can impersonate. Does not allow impersonation of admin users. |
| import_admin | Can manage all aspects of Import Sets and imports |
| import_scheduler | Can schedule imports |
| import_set_loader | Can load Import Sets |
| import_transformer | Can manage Import Set Transform Maps and run transforms |
| inventory_admin | Can create and delete stock information. Only users with the inventory_admin role can edit stock rules, stockrooms, and stockroom types. |
| inventory_user | Has access to stock information. Can create and manage transfer orders. |
| itil | Can perform standard actions for an ITIL helpdesk technician. Can open, update, close incidents, problems, changes, config management items. By default, only users with the itil role can have tasks assigned to them |
| itil_admin | Possesses more privileges than the itil role and is intended for team leads. This role has the ability to delete incidents, problems, changes, and other related entities |
| knowledge | Can create, edit, and review Knowledge Base articles |
| knowledge_admin | Can manage the Knowledge Base |
| list_updater | Can use "Update Entire List" and "Update Selected" menu options on lists |
| maint | Reserved for ServiceNow use |
| mid_server | Role that any MID server user should be granted. This role gives the MID server access to the tables it ordinarily uses. |
| model_manager | Can create new CMDB models. Model manager can control the base models and any model extensions that are not hardware, software, or consumables. Hardware and consumable models are controlled by the asset manager role (asset). Software models are control by the software asset manager role (sam). |
| nobody | The "nobody" role means that nobody has access - not even admin or maint.
| Warning: Applying the nobody role may be irreversible if applied to some important system functions. |
|
| personalize | Can personalize forms, lists, rules, controls, scripts |
| personalize_choices | Can personalize choices and predefined responses for non-Journal fields designated as choice or suggestion fields |
| personalize_control | Can personalize controls on lists, such as filters, links, and buttons |
| personalize_dictionary | Can personalize dictionary entries and labels |
| personalize_form | Can personalize forms |
| personalize_list | Can personalize lists |
| personalize_responses | Can personalize predefined responses for Journal fields designated as suggestion fields
|
| personalize_rules | Can personalize Business Rules and scripts. This role contains the following, specialized roles for granting selective, administrative access to rules and scripts:
business_rule_admin client_script_admin ui_policy_admin ui_action_admin
|
| personalize_styles | Can personalize field styles |
| personalize_ui | Can personalize forms and lists |
| public | No login is required to access features or functions with the public role |
| release_admin | Can edit Release history for a Release |
| report_admin | Can manage reports |
| report_global | Can create global reports |
| report_group | Can create reports and share reports with groups that the user is a member of. Users with this role can edit reports shared by other users in the group. |
| report_publisher | Can make reports available on a public page |
| report_scheduler | Can schedule a report to be emailed |
| script_fix_admin | Can manage fix scripts (Calgary release). |
| soap | Can query, create, update, and delete records on all tables, as well as execute scripts |
| soap_create | Can create records on all tables and columns |
| soap_delete | Can delete records on all tables and columns |
| soap_ecc | Can query, create, and update on the ECC Queue table only |
| soap_query | Can query records on all tables and columns |
| soap_query_update | Can query and update records on all tables and columns |
| soap_script | Can execute business rule endpoint function via script.do |
| soap_update | Can update records on all tables and columns |
| survey_admin | Can manage Survey Masters, Questions, and Instances |
| survey_reader | Can read Survey Instances and Responses |
| task_editor | Can edit protected task fields |
| template_editor | Can edit/modify templates. Included in the itil role out-of-box |
| template_editor_global | Can create templates for global use |
| template_editor_group | Can create templates for groups |
| template_scheduler | Can schedule template-based record creation |
| text_search_admin | Can customize Global Text Search groups and tables |
| timecard_admin | Enables users to approve, modify, and delete the timecards of other users |
| ts_admin | Can administer Zing text search. |
| user | Available for customer use, has no function out-of-box |
| user_admin | Can administer users, groups, locations, and companies |
| view_changer | Can switch active views |
| workflow_admin | Can create, edit, publish or delete graphical workflows |
| workflow_creator | Can create new graphical workflows |
| workflow_publisher | Can publish graphical workflows |
5252
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
