<h2>Base system roles</h2><br/><div style="overflow-x:auto"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"><head><meta content="text/html; charset=UTF-8" /><meta name="copyright" content="(C) Copyright 2024" /><meta name="DC.rights.owner" content="(C) Copyright 2024" /><meta name="generator" content="DITA-OT" /><meta name="DC.type" content="reference" /><meta name="DC.title" content="Base system roles" /><meta name="abstract" content="Administrators can assign one or more base system user roles to grant access to base system platform features and applications." /><meta name="description" content="Administrators can assign one or more base system user roles to grant access to base system platform features and applications." /><meta name="DC.subject" content="Roles, base system roles" /><meta name="keywords" content="Roles, base system roles" /><meta name="DC.relation" scheme="URI" content="../../../administer/roles/concept/c_Roles.html" /><meta name="DC.relation" scheme="URI" content="../../../get-started/servicenow-overview/reference/r_AdministerServiceNow.html" /><meta name="DC.relation" scheme="URI" content="../../../administer/roles/concept/c_UserAdministration.html" /><meta name="DC.relation" scheme="URI" content="../../../administer/roles/reference/r_SpecialAdministrativeRoles.html" /><meta name="DC.relation" scheme="URI" content="../../../administer/user-administration/concept/c_ReadOnlyRole.html" /><meta name="DC.creator" content="ServiceNow" /><meta name="DC.date.created" content="2022-08-04" /><meta name="DC.date.modified" content="2022-08-04" /><meta name="DC.format" content="XHTML" /><meta name="DC.identifier" content="r_BaseSystemRoles" /><link rel="stylesheet" type="text/css" href="../../../CSS/commonltr.css" /><title>Base system roles</title></head><body id="r_BaseSystemRoles"> <div class="breadcrumb"><a class="link" href="../../../get-started/servicenow-overview/reference/r_AdministerServiceNow.html" title="The Now Platform is an application platform as a service that automates business processes across the enterprise. The Now Platform provides the infrastructure to help your organization develop, run, and manage applications.">Now Platform administration</a> > <a class="link" href="../../../administer/roles/concept/c_UserAdministration.html" title="Manage the individuals who can access your instance by defining them as users in the system. Create user groups, and assign users to them. Use roles to specify what different users and user groups can see and do.">User Administration</a> > </div> <h1 class="title topictitle1" id="ariaid-title1">Base system roles</h1> <div class="body refbody"><p class="shortdesc">Administrators can assign one or more base system user roles to grant access to base system platform features and applications.</p> <div class="section" id="r_BaseSystemRoles__section_tjb_ldd_snb">The following standard roles are included in the base <span class="ph">ServiceNow</span> system with a new instance.<div class="note"><span class="notetitle">Note:</span> You cannot rename roles of any kind in the <span class="ph">Now Platform</span>.</div> <div class="p"> <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="r_BaseSystemRoles__table_yly_lly_wq" class="table" frame="border" border="1" rules="all"><caption><span class="tablecap"><span class="table--title-label">Table 1. </span>Base system roles</span></caption><colgroup><col /><col /></colgroup><thead class="thead" style="text-align:left;"><tr class="row"><th class="entry cellrowborder" style="vertical-align:top;" id="d156629e72">Role</th><th class="entry cellrowborder" style="vertical-align:top;" id="d156629e75">Description</th></tr></thead><tbody class="tbody"><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 "><p class="p">The administrator role. This role has special access to all system features, functions, and data because administrators can override ACL rules and pass all role checks. Consider these implications when using admin overrides on ACLs.</p> <p class="p">If you have sensitive information, such as HR records, that you need to protect, you must create a custom admin role for that area and train a person authorized to see those records to act as the administrator. Also note the <a class="xref" href="r_SpecialAdministrativeRoles.html" title="Certain roles grant specific administrative rights without the full privileges of the admin role. For example, an administrator can grant a user the right to change UI policy but not client scripts.">Special Administrative Roles</a>.</p> <div class="p"><div class="note warning"><span class="warningtitle">Warning:</span> <p class="p">The System administrator(admin) role provides access to all system features, functions, and data, regardless of security constraints. Avoid assigning this role to your users when more targeted roles are available.</p> </div> </div> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">agent_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage MID Server-related scripts.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">ais_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can query, create, update, and delete indexing and search settings and log messages through the <a class="xref" href="../../ai-search/concept/overview-ais.html" title="The ServiceNow AI Search application provides a consumer-grade search engine for ServiceNow Service Portal, ServiceNow Now Mobile, and ServiceNow Virtual Agent . Intelligent query features enable users to quickly find the answers they need."><span class="ph">AI Search</span></a> application.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">approval_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can approve or reject approvals.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">approver_user</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can modify requests for approval routed to them. They also have all capabilities of Requesters. <div class="p"><div class="note"><span class="notetitle">Note:</span> There is a fee associated with this role. Do not assign it to users without confirming your organization has the appropriate entitlement.</div> </div> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">assignment_rule_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage Assignment Rules.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">asset</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage hardware and software assets.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">business_process_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 "><p class="p">Can create, read, update, and delete (CRUD) all records and their relationships in the business process. This role is assigned to users who are administrators and have thorough information and training on business processes.</p> <p class="p">In the context of Governance, Risk, and Compliance (GRC), users with the sn_grc.admin role who manage GRC applications and their setup automatically gain access to this role. This access enables the GRC administrators to administer business process and its records similar to other GRC tables.</p> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">business_process_manager</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 "><p class="p">Can create, read and update any business process and manage the relationship of business process with other records. This role is assigned to business process managers who are usually specialists and manage multiple business processes in the organisation. Such users generally work with other employees and are experts around business processes.</p> <p class="p">In the context of GRC, users with the sn_grc.manager role automatically inherit this role that enables them to manage the business processes for the entire organization.</p> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">business_process_user</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 "><p class="p">Can update the business processes that a user owns and can also read any business process. This role must be assigned to the respective process owners who manage the business process that they own. This role can also be provided to users who are required to view the business processes in the organization and understand them better.</p> <p class="p">In the context of GRC, users with the sn_risk.user role are automatically assigned this role as this role enables them to manage the business processes they own as well as read all business processes.</p> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">catalog</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Has access to service catalog requests.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">catalog_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage the Service Catalog application, including catalog categories and items.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">catalog_editor</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create, modify, and publish items within categories they are assigned to.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">catalog_item_designer</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can view the status of their category requests.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">catalog_manager</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can view and assign catalog editors to their categories. Can also create, modify, and publish items within their categories.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">category_manager</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create, edit, and delete model categories.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">cmdb_ms_read</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can access and run a Multsource CMDB query but can't create a query. Contains cmdb_read role.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">cmdb_ms_editor</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create and run a query, has full read and write access, but can't do Recompute. Contains cmdb_ms_read role.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">cmdb_ms_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create and run a query, and can modify Multisource CMDB properties. Contains cmdb_ms_write role.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">cmdb_read</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can read any CMDB table. Contained in admin and itil.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">communication_manager</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Manages communication for major incidents and is responsible for communicating with all stakeholders.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">contract_manager</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create, edit, and delete contracts through the Contract Management application.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">data_classification_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Administers all aspects of the Data Classification application, data classification code setup and assignment,</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">data_classification_auditor</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Audits Data Classification code assignments.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">ecmdb_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can administer the CMDB.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">filter_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage filters.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">filter_global</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create global filters.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">filter_group</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create filters that belong to groups of which the user is a member.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">gauge_maker</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create gauges from reports. Starting with Helsinki, reports are no longer made into gauges.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">guided_tour_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage and administer Guided Tour functionality.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">image_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage image files on the Images [db_image] table.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">impersonator</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can impersonate users. Does not allow impersonation of admin users.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">import_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage all aspects of import sets and imports.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">import_scheduler</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can schedule imports. <div class="p"><div class="note warning"><span class="warningtitle">Warning:</span> Grant this role carefully. The import_scheduler role is equivalent to giving the user the admin role, because the import_scheduler has the ability to execute scripts with administrator level privileges.</div> </div> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">import_set_loader</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can load import sets.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">import_transformer</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage import set transform maps and run transforms.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">incident_manager</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Manages Incident properties and Major Incident trigger rules.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">inventory_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create and delete stock information. Only users with the inventory_admin role can edit stock rules, stockrooms, and stockroom types.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">inventory_user</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Has access to stock information. Can create and manage transfer orders.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">itil</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can perform standard actions for an ITIL helpdesk technician. Can open, update, close incidents, problems, changes, configuration management items. By default, only users with the itil role can have tasks assigned to them.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">itil_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Possesses more privileges than the itil role and is intended for team leads. This role has the ability to delete incidents, problems, changes, and other related entities when both the itil and itil_admin roles are assigned. <p class="p">In addition, the itil_admin role grants full control of the CMDB. The itil_admin role includes all of the permissions granted to the sn_cmdb_admin role, which provides full access to CMDB data, tools, and UIs.</p> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">knowledge</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create, edit, and review knowledge base articles.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">knowledge_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage the knowledge base.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">list_updater</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can use Update Entire List and Update Selected menu options on lists.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">maint</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Reserved for <span class="ph">ServiceNow</span> use.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">mid_server</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Role that any MID server user should be granted. This role gives the MID server access to the tables it ordinarily uses.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">model_manager</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create new CMDB models. Model manager can control the base models and any model extensions that are not software or consumables. Consumable models are controlled by the asset manager role (asset). Software models are control by the software asset manager role (sam).</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">major_incident_manager</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Initiates the major incident process by assessing and approving major incident candidates or creating a major incident. Maintains the ownership and accountability for the lifecycle of the incident. Identifies the users and groups to be involved in the resolution activities and sets up communication channels.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">nobody</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 "><p class="p">The nobody role means that no user has access - not even admin or maint. Use the nobody role carefully. The nobody role takes precedence over the admin override option on ACLs, so even admins cannot have access. See <a class="xref" href="../administer/contextual-security/task/t_CreateAnACLRule.dita/t_CreateAnACLRule.html" target="_blank" rel="noopener noreferrer">Create an ACL rule</a>.</p> <p class="p">Do not assign it to specific users. You can use this role in ACLs that control access to resources, such as UI pages, processors, script includes, and records.</p> <div class="p"><div class="note warning"><span class="warningtitle">Warning:</span> Applying the nobody role may be irreversible if applied to some important system functions.</div> </div> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can configure forms, lists, rules, controls, scripts.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_choices</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can configure <a class="xref" href="../../field-administration/task/t_ViewChoiceListDefinitions.html#t_DefineAnOptionForAChoiceList" title="You can personalize the options that are available in a choice list.">choices</a> and predefined responses for non-journal fields designated as choice or suggestion fields.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_control</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can <a class="xref" href="../../../Chunk141356842.html" title="You can configure list controls, such as buttons and filters.">configure controls</a> on lists, such as filters, links, and buttons.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_dictionary</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can configure dictionary entries and <a class="xref" href="../../reference-pages/task/t_ChangeFieldLabelOrHint.html" title="You can change a field's label or the text that appears as a hint when you point your cursor to the field.">labels</a>.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_form</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can <a class="xref" href="../../form-administration/concept/configure-form-layout.html" title="Administrators or users with the personalize_form role can configure the form and related list layout.">configure forms</a>.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_list</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can <a class="xref" href="../../list-administration/task/t_ConfigureTheListLayout.html" title="You can configure a list to choose which columns appear in a list, create list views, and create fields on the table.">configure lists</a> and list <a class="xref" href="../../list-administration/task/t_ConfigureListCalculations.html" title="You can configure list calculations for columns, which calculate column totals, minimums, maximums, and averages.">calculations</a>.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_responses</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can configure predefined responses for <a class="xref" href="../../field-administration/concept/c_JournalFields.html" title="There are three types of journal field: journal, journal_list, and journal_input.">journal fields</a> designated as suggestion fields.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_rules</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can configure business rules and scripts. This role contains the following specialized roles for granting selective, administrative access to rules and scripts:<ul class="ul" id="r_BaseSystemRoles__ul_rvl_dpy_wq"><li class="li">business_rule_admin</li><li class="li">client_script_admin</li><li class="li">ui_policy_admin</li><li class="li">ui_action_admin</li></ul> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_styles</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can configure <a class="xref" href="../../navigation-and-ui/task/t_DefineFieldStyles.html" title="Field styles enable you to declare individual CSS styles for a field in a list or form.">field styles</a>.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">personalize_ui</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can configure forms and lists.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">public</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">No login is required to access features or functions with the public role.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">release_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can edit Release history for a release.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">report_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage reports.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">report_global</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create global reports.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">report_group</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create reports and share reports with groups that the user is a member of. Users with this role can edit reports shared by other users in the group.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">report_publisher</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can make reports available on a public page.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">report_scheduler</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can schedule a report to be emailed.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">script_fix_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 "><p class="p">Can create and manage fix scripts but cannot run fix scripts.</p> </td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">search_application_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can query, create, update, and delete records on search UX-related tables. Contains the ais_admin role.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">sn_appclient.app_client_company_installer</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can install applications containing the same company as the currently logged in instance.User role that allows for first time installation of only those applications for the company associated with the currently logged in instance. A user with this role cannot install an application for another company.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">sn_appclient.app_client_user</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can install applications containing the same company as the currently logged in instance.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">sn_cmdb_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Provides full access to CMDB data, tools, and UIs within CMDB Workspace. A CMDB Admin, for example, sets policies in the CI Class Manager and application service requirements. CMDB Admin provides the highest level of access to the CMDB.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">sn_cmdb_editor</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Provides access to CMDB records within CMDB Workspace. A CMDB Editor is not allowed to change policies such as in the CMDB Data Manager or in the CI Class Manager.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">sn_cmdb_user</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Provides read-only access to CMDB data and to basic UIs such as CMDB reports and dashboards within CMDB Workspace.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">soap</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can query, create, update, and delete records on all tables, as well as execute scripts.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">soap_create</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create records on all tables and columns.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">soap_delete</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can delete records on all tables and columns.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">soap_ecc</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can query, create, and update on the ECC Queue table only.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">soap_query</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can query records on all tables and columns.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">soap_query_update</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can query and update records on all tables and columns.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">soap_script</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can execute business rule endpoint function via script.do.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">soap_update</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can update records on all tables and columns.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">survey_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can manage survey masters, questions, and instances. Contains the assessment_admin role.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">survey_reader</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can read survey instances and responses.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">task_editor</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can edit protected task fields.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">template_editor</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create templates for personal use, and modify or delete personal templates. Included in the itil role in the base system.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">template_editor_global</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create templates for global use.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">template_editor_group</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create templates for groups.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">template_scheduler</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can schedule template-based record creation.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">text_search_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can customize Global Text Search groups and tables.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">timecard_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can approve, modify, and delete the time cards of other users.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">ts_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can administer <a class="xref" href="../../search-administration/concept/c_ZingTextSearch.html" title="Index and search record data by table.">Zing text indexing and search engine</a>.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">unlimited_createnow</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Role for CreateNow unlimited licensed users.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">upgrade_app</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can upgrade installed applications containing the same company as the currently logged in instance. Cannot perform first time installations of applications published to the Application Client page.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">user</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Available for customer use, has no function in the base system.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">user_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can administer users, groups, locations, and companies.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">view_changer</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can switch active views.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">workflow_admin</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create, edit, publish or delete graphical workflows.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">workflow_creator</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can create new graphical workflows.</td></tr><tr class="row"><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e72 ">workflow_publisher</td><td class="entry cellrowborder" style="vertical-align:top;" headers="d156629e75 ">Can publish graphical workflows.</td></tr></tbody></table> </div> </div> </div> <div class="section" id="r_BaseSystemRoles__section_hkm_cy4_15b"><h2 class="title sectiontitle">Application specific roles</h2> <div class="p">Applications you install on your instance may include additional roles. Follow the links in this section to see roles installed along with applications. <div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="r_BaseSystemRoles__table_jtn_p3p_15b" class="table" frame="void" border="0" rules="none"><colgroup><col style="width:25%" /><col style="width:25%" /><col style="width:25%" /><col style="width:25%" /></colgroup><tbody class="tbody"><tr class="row"><td class="entry nocellnorowborder" style="vertical-align:top;"><ul class="ul" id="r_BaseSystemRoles__ul_irs_p3p_15b"><li class="li"><a class="xref" href="../product/human-resources/concept/asc-configure.dita/asc-configure.html" target="_blank" rel="noopener noreferrer">Alumni Service Center</a></li><li class="li"><a class="xref" href="../product/application-portfolio-management/reference/installed-with-application-portfolio-mangemt.dita/installed-with-application-portfolio-mangemt.html" target="_blank" rel="noopener noreferrer">Application Portfolio Management</a></li><li class="li"><a class="xref" href="../product/grc-audit/reference/r_InstallWAudit.dita/r_InstallWAudit.html" target="_blank" rel="noopener noreferrer">Audit Management</a></li><li class="li"><a class="xref" href="../product/workplace-case-mgmt/reference/components-installed-with-workplace-case-mgmt.dita/components-installed-with-workplace-case-mgmt.html" target="_blank" rel="noopener noreferrer">Case Management</a></li><li class="li"><a class="xref" href="../product/service-catalog-management/reference/r_InstalledWithCatalogItemDesigner.dita/r_InstalledWithCatalogItemDesigner.html" target="_blank" rel="noopener noreferrer">Catalog Item Designer</a></li><li class="li"><a class="xref" href="../product/change-management/reference/installed-with-cm-itsm-roles.dita/installed-with-cm-itsm-roles.html" target="_blank" rel="noopener noreferrer">Change Management</a></li><li class="li"><a class="xref" href="../product/orchestration/reference/r_IWClientSWDist.dita/r_IWClientSWDist.html" target="_blank" rel="noopener noreferrer">Client Software Distribution</a></li><li class="li"><a class="xref" href="../product/continual-improvement-management/reference/cim-components.dita/cim-components.html" target="_blank" rel="noopener noreferrer">Continual Improvement Management</a></li><li class="li"><a class="xref" href="../product/contract-management/reference/r_UserRolesIWContractMgmt.dita/r_UserRolesIWContractMgmt.html" target="_blank" rel="noopener noreferrer">Contract Management</a></li><li class="li"><a class="xref" href="../product/customer-service-management/reference/r_RolesInstalledWithCustomerService.dita/r_RolesInstalledWithCustomerService.html" target="_blank" rel="noopener noreferrer">Customer Service Management</a></li><li class="li"><a class="xref" href="../product/customer-service-management/reference/r_rolesinstalledwithcustaccessmgmt.dita/r_rolesinstalledwithcustaccessmgmt.html" target="_blank" rel="noopener noreferrer">Customer Access Management</a></li><li class="li"><a class="xref" href="../product/data-separation/reference/installed-with-data-separation.dita/installed-with-data-separation.html" target="_blank" rel="noopener noreferrer">Data Separation</a></li><li class="li"><a class="xref" href="../product/digital-portfolio-management/reference/dpm-roles.dita/dpm-roles.html" target="_blank" rel="noopener noreferrer">Digital Portfolio Management</a></li><li class="li"><a class="xref" href="../product/esg-management-reporting/reference/components-installed-with-esg.dita/components-installed-with-esg.html" target="_blank" rel="noopener noreferrer">ESG Management</a></li><li class="li"><a class="xref" href="../product/enterprise-release-management/reference/roles-installed-with-enterprise-release-managment.dita/roles-installed-with-enterprise-release-managment.html" target="_blank" rel="noopener noreferrer">Enterprise Release Management</a></li><li class="li"><a class="xref" href="../product/event-management/reference/r_InstalledWithEventManagement.dita/r_InstalledWithEventManagement.html" target="_blank" rel="noopener noreferrer">Event Management</a></li><li class="li"><a class="xref" href="../product/expense-line/reference/r_InstalledWithExpenseLine.dita/r_InstalledWithExpenseLine.html" target="_blank" rel="noopener noreferrer">Expense Line</a></li><li class="li"><a class="xref" href="../product/facilities-move-management/reference/r_RolesInstallWFacMoveMgmt.dita/r_RolesInstallWFacMoveMgmt.html" target="_blank" rel="noopener noreferrer">Facilities Move Management</a></li><li class="li"><a class="xref" href="../product/facilities-service-management/reference/r_RolesInstallWFacServMgmnt.dita/r_RolesInstallWFacServMgmnt.html" target="_blank" rel="noopener noreferrer">Facilities Service Management</a></li><li class="li"><a class="xref" href="../product/planning-and-policy/reference/r_InstalledWithFSM.dita/r_InstalledWithFSM.html" target="_blank" rel="noopener noreferrer">Field Service Management</a></li></ul> </td><td class="entry nocellnorowborder" style="vertical-align:top;"><ul class="ul" id="r_BaseSystemRoles__ul_ugn_2jp_15b"><li class="li"><a class="xref" href="../product/field-service-management/concept/service-locations-components.dita/service-locations-components.html" target="_blank" rel="noopener noreferrer">Field Service with Service Locations Support</a></li><li class="li"><a class="xref" href="../product/it-finance/reference/r_InstalledWithITFinanceUserRoles.dita/r_InstalledWithITFinanceUserRoles.html" target="_blank" rel="noopener noreferrer">Financial Management</a></li><li class="li"><a class="xref" href="../product/metrics/reference/tables-installed-with-metrics.dita/tables-installed-with-metrics.html" target="_blank" rel="noopener noreferrer">GRC: Metrics</a></li><li class="li"><a class="xref" href="../product/human-resources-global/reference/r_InstalledWithHumanResources-global.dita/r_InstalledWithHumanResources-global.html" target="_blank" rel="noopener noreferrer">HR Service Management Legacy</a></li><li class="li"><a class="xref" href="../product/itsm-predictive-intel-workbench/reference/itsm-piwb-intalled-with.dita/itsm-piwb-intalled-with.html" target="_blank" rel="noopener noreferrer">ITSM Predictive Intelligence Workbench</a></li><li class="li"><a class="xref" href="../product/investment-funding/reference/installed-with-investment-funding.dita/installed-with-investment-funding.html" target="_blank" rel="noopener noreferrer">Investment Funding</a></li><li class="li"><a class="xref" href="../product/legal-service-management/reference/r_InstallWLegalServMgmt.dita/r_InstallWLegalServMgmt.html" target="_blank" rel="noopener noreferrer">Legal Service Management</a></li><li class="li"><a class="xref" href="../use/live-feed/reference/r_UserRolesInstalledWithLiveFeed.dita/r_UserRolesInstalledWithLiveFeed.html" target="_blank" rel="noopener noreferrer">Live Feed</a></li><li class="li"><a class="xref" href="../product/customer-service-management/reference/installed-with-major-issue-mgmt.dita/installed-with-major-issue-mgmt.html" target="_blank" rel="noopener noreferrer">Major Issue Management</a></li><li class="li"><a class="xref" href="../product/marketing-service-management/reference/r_InstallWMarketServMgmt.dita/r_InstallWMarketServMgmt.html" target="_blank" rel="noopener noreferrer">Marketing Service Management</a></li><li class="li"><a class="xref" href="../product/asset-management/concept/installed-with-model-management.dita/installed-with-model-management.html" target="_blank" rel="noopener noreferrer">Model Management</a></li><li class="li"><a class="xref" href="../product/notify2/reference/r_NotifyRoles.dita/r_NotifyRoles.html" target="_blank" rel="noopener noreferrer">Notify</a></li><li class="li"><a class="xref" href="../product/customer-service-management/reference/r_InstalledWithOpenFrame.dita/r_InstalledWithOpenFrame.html" target="_blank" rel="noopener noreferrer">OpenFrame</a></li><li class="li"><a class="xref" href="product/grc-operational-res/reference/components-installed-with-op-res.html#roles-installed-with-op-res" target="_blank" rel="noopener noreferrer">Operational Resilience</a></li><li class="li"><a class="xref" href="../product/orchestration/reference/r_InstalledWithOrchestrationROI.dita/r_InstalledWithOrchestrationROI.html" target="_blank" rel="noopener noreferrer">Orchestration ROI</a></li><li class="li"><a class="xref" href="../product/healthcare-life-sciences/reference/pss-components-installed.dita/pss-components-installed.html" target="_blank" rel="noopener noreferrer">Patient Support Services</a></li><li class="li"><a class="xref" href="../administer/workspace/reference/playbook-components.dita/playbook-components.html" target="_blank" rel="noopener noreferrer">Playbook</a></li><li class="li"><a class="xref" href="../product/healthcare-life-sciences/reference/pre-visit-components-installed.dita/pre-visit-components-installed.html" target="_blank" rel="noopener noreferrer">Pre-Visit Management</a></li><li class="li"><a class="xref" href="../product/grc-privacy-management/reference/roles-installed-prm.dita/roles-installed-prm.html" target="_blank" rel="noopener noreferrer">Privacy Management</a></li><li class="li"><a class="xref" href="../product/procurement/reference/r_UserRolesProcurement.dita/r_UserRolesProcurement.html" target="_blank" rel="noopener noreferrer">Procurement</a></li></ul> </td><td class="entry nocellnorowborder" style="vertical-align:top;"><ul class="ul" id="r_BaseSystemRoles__ul_qcf_qjp_15b"><li class="li"><a class="xref" href="../product/product-catalog/reference/r_RolesProductCatalog.dita/r_RolesProductCatalog.html" target="_blank" rel="noopener noreferrer">Product Catalog</a></li><li class="li"><a class="xref" href="../product/project-portfolio-suite-with-financials/reference/r_InstalledWithProjectPortfolioSuiteWithFinancials.dita/r_InstalledWithProjectPortfolioSuiteWithFinancials.html" target="_blank" rel="noopener noreferrer">Project Portfolio Management</a></li><li class="li"><a class="xref" href="../product/public-sector/concept/public-sector-roles-installed.dita/public-sector-roles-installed.html" target="_blank" rel="noopener noreferrer">Public Sector Digital Services</a></li><li class="li"><a class="xref" href="../product/grc-risk/reference/r_InstallWRisk.dita/r_InstallWRisk.html" target="_blank" rel="noopener noreferrer">Risk Management</a></li><li class="li"><a class="xref" href="../product/service-management-planned-maintenance/reference/r_InstallWServMgmtPlanMaint.dita/r_InstallWServMgmtPlanMaint.html" target="_blank" rel="noopener noreferrer">SM Planned Maintenance</a></li><li class="li"><a class="xref" href="../product/scrum-programs/reference/installed-with-scrum-programs.dita/installed-with-scrum-programs.html" target="_blank" rel="noopener noreferrer">Scrum Programs</a></li><li class="li"><a class="xref" href="../product/security-incident-response/reference/installed-with-sir.dita/installed-with-sir.html" target="_blank" rel="noopener noreferrer">Security Incident Response</a></li><li class="li"><a class="xref" href="../product/tmt-service-bridge/reference/service-bridge-installed-components-customer.dita/service-bridge-installed-components-customer.html" target="_blank" rel="noopener noreferrer">Service Bridge</a></li><li class="li"><a class="xref" href="../product/tmt-service-bridge/reference/service-bridge-installed-components-provider.dita/service-bridge-installed-components-provider.html" target="_blank" rel="noopener noreferrer">Service Bridge for Providers</a></li><li class="li"><a class="xref" href="../product/service-builder/reference/service-builder-roles.dita/service-builder-roles.html" target="_blank" rel="noopener noreferrer">Service Builder</a></li><li class="li"><a class="xref" href="../product/service-level-management/reference/r_InstalledWithServiceLevelMgmt.dita/r_InstalledWithServiceLevelMgmt.html" target="_blank" rel="noopener noreferrer">Service Level Management</a></li><li class="li"><a class="xref" href="../product/service-management-core/reference/r_InstallWServMgmtCore.dita/r_InstallWServMgmtCore.html" target="_blank" rel="noopener noreferrer">Service Management Core</a></li><li class="li"><a class="xref" href="../product/service-portfolio-management2/reference/r_InstalledWSPM2.dita/r_InstalledWSPM2.html" target="_blank" rel="noopener noreferrer">Service Portfolio Management</a></li><li class="li"><a class="xref" href="../product/customer-service-management/reference/r_InstalledWithSpecHandNotes.dita/r_InstalledWithSpecHandNotes.html" target="_blank" rel="noopener noreferrer">Special Handling Notes</a></li><li class="li"><a class="xref" href="../../state-model/reference/installed-state-model.html" title="Several types of components are installed with the State Model.">State Model</a></li><li class="li"><a class="xref" href="../product/customer-service-management/reference/r_TargetCommInstalledComponents.dita/r_TargetCommInstalledComponents.html" target="_blank" rel="noopener noreferrer">Targeted Communications</a></li><li class="li"><a class="xref" href="../product/project-management/reference/r_InstalledWithTeamspaces.dita/r_InstalledWithTeamspaces.html" target="_blank" rel="noopener noreferrer">Teamspaces</a></li><li class="li"><span class="xref">Treat Intelligence Sharing</span></li><li class="li"><a class="xref" href="../product/vendor-management-workspace/reference/installed-w-vendor-manager-configurable-workspace.dita/installed-w-vendor-manager-configurable-workspace.html" target="_blank" rel="noopener noreferrer">Vendor Management Workspace</a></li><li class="li"><a class="xref" href="../product/vulnerability-response/reference/installed-with-vr.dita/installed-with-vr.html" target="_blank" rel="noopener noreferrer">Vulnerability Response</a></li><li class="li"><a class="xref" href="../product/workplace-calendar-synchronization/reference/components-installed-with-workplace-calendar-syncn.dita/components-installed-with-workplace-calendar-syncn.html" target="_blank" rel="noopener noreferrer">Workplace Calendar Synchronization</a></li></ul> </td><td class="entry nocellnorowborder" style="vertical-align:top;"><ul class="ul" id="r_BaseSystemRoles__ul_n25_2kp_15b"><li class="li"><a class="xref" href="../product/workplace-case-mgmt/reference/components-installed-with-workplace-case-mgmt.dita/components-installed-with-workplace-case-mgmt.html" target="_blank" rel="noopener noreferrer">Workplace Case Management</a></li><li class="li"><a class="xref" href="../product/workplace-move-mgmt/reference/components-installed-with-workplace-move-mgmt.dita/components-installed-with-workplace-move-mgmt.html" target="_blank" rel="noopener noreferrer">Workplace Move Management</a></li><li class="li"><a class="xref" href="../product/wsd-reservation-management/reference/components-installed-with-wsd-reservation-mgmt.dita/components-installed-with-wsd-reservation-mgmt.html" target="_blank" rel="noopener noreferrer">Workplace Reservation Management</a></li><li class="li"><a class="xref" href="../product/workplace-reservations-outlook-addin/reference/components-installed-with-wsd-reservations-outlookaddin.dita/components-installed-with-wsd-reservations-outlookaddin.html" target="_blank" rel="noopener noreferrer">Workplace Reservations for Microsoft Outlook Add-in</a></li><li class="li"><a class="xref" href="../product/workplace-safety-mgmt/reference/components-installed-with-workplace-safety-mgmt-hr.dita/components-installed-with-workplace-safety-mgmt-hr.html" target="_blank" rel="noopener noreferrer">Workplace Safety Management</a></li><li class="li"><a class="xref" href="../product/workplace-space-management/reference/components-installed-with-wsd-space-mgmt.dita/components-installed-with-wsd-space-mgmt.html" target="_blank" rel="noopener noreferrer">Workplace Space Management</a></li><li class="li"><a class="xref" href="../product/workplace-space-mapping/reference/wsm-mappedin-components.dita/wsm-mappedin-components.html" target="_blank" rel="noopener noreferrer">Workplace Space Mapping</a></li><li class="li"><a class="xref" href="../product/workplace-visitor-mgmt/reference/components-installed-with-workplace-visitor-mgmt.dita/components-installed-with-workplace-visitor-mgmt.html" target="_blank" rel="noopener noreferrer">Workplace Visitor Management</a></li></ul> </td></tr></tbody></table> </div> </div> </div> </div> <div class="related-links"> <ul class="ullinks"><li class="link ulchildlink"><strong><a href="../../../administer/roles/reference/r_SpecialAdministrativeRoles.html">Special administrative roles</a></strong><br /> Certain roles grant specific administrative rights without the full privileges of the admin role. For example, an administrator can grant a user the right to change UI policy but not client scripts.</li><li class="link ulchildlink"><strong><a href="../../../administer/user-administration/concept/c_ReadOnlyRole.html">Read-only role</a></strong><br /> The read-only role (snc_read_only) restricts a user or a group of users to read-only access on the tables to which the user already has access.</li></ul> <div class="familylinks"> <div class="parentlink"><strong>Parent Topic:</strong> <a class="link" href="../../../administer/roles/concept/c_Roles.html" title="Roles control access to features and capabilities in applications and modules. The admin role provides access to all features and capabilities.">Roles</a></div> </div> </div></body></html></div>