Roles to class mapping for configurable workspaces

  • Release version: Yokohama
  • Updated February 4, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Roles to Class Mapping for Configurable Workspaces

    In configurable workspaces, specific roles are linked to classes beyond the default seeded classes. Each configurable workspace has new roles based on designated applications, enhancing access to relevant asset and model classes for users in their respective roles.

    Show full answer Show less

    Key Features

    • Application Designations: Each application corresponds to a designated workspace and specific roles:
      • Enterprise Asset Management for Healthcare: Medical Asset Workspace with roles like sneamhc.medicalassetmanager and sneamhc.medicalassettechnician.
      • Enterprise Asset Management for Facilities: Facility Asset Workspace with roles like sneamfam.facilityassetmanager and sneamfam.facilityassettechnician.
      • Operational Technology Asset Management: OT Asset Workspace with roles like snotam.otassetmanage and snotam.otassettechnician.
    • Default Configuration: Each role has seeded model categories and enterprise classes, such as:
      • Medical technician role accesses medical-related classes.
      • Facility technician role accesses facility-related classes.
      • OT technician role accesses industrial and hardware-related classes.
    • Access Control: Roles can only view and initiate tasks relevant to their assigned classes, ensuring focused workflows.
    • Configuration Flexibility: Enterprise admins can modify role configurations to expand class access as needed.

    Key Outcomes

    By leveraging this roles to class mapping, ServiceNow customers can ensure that users access only the information pertinent to their responsibilities, enhancing operational efficiency. Additional configurations allow for tailored access, ensuring that roles can be adapted to evolving organizational needs while maintaining clarity and security in access management.

    In configurable workspaces, roles can access classes in addition to the default seeded classes for each specific role.

    New roles are assigned to each configurable workspace. New roles are based on the following applications and their designated workspace.
    Application Designated workspace Roles
    Enterprise Asset Management for Healthcare Medical Asset Workspace
    • sn_eamhc.medical_asset_manager
    • sn_eamhc.medical_asset_technician
    Enterprise Asset Management for Facilities Facility Asset Workspace
    • sn_eamfam.facility_asset_manager
    • sn_eamfam.facility_asset_technician
    Operational Technology (OT) Asset Management OT Asset Workspace
    • sn_otam.ot_asset_manage
    • sn_otam.ot_asset_technician

    A default configuration of classes is seeded for each role that maps to its corresponding model category.

    The following mapping is a default configuration that is seeded for the Medical, the Facilities, and the OT technician roles.
    Note:
    The manager roles include the respective technician roles for Enterprise Asset Management for Healthcare, Enterprise Asset Management for Facilities, and Operational Technology (OT) Asset Management applications.
    Table 1. Roles to classes access
    Enterprise roles Seeded model categories Seeded enterprise classes for roles
    Medical technician

    sn_eamhc.medical_asset_technician

    		 Medical

    sn_ent_medical_model

    sn_ent_medical_device_model

    sn_ent_medical_asset
    Facility technician

    sn_eamfam.facility_asset_technician

    		 Facilities

    sn_ent_facility_model

    sn_ent_facility_asset
    OT technician

    sn_otam.ot_asset_technician

    		 Industrial, Hardware

    sn_ent_industrial_asset

    sn_ent_industrial_model, alm_hardware

    cmdb_hardware_product_model

    sn_ent_firmware_model

    sn_ent_discov_firmware_model

    The Roles to classes access table shows the various classes that each role has access to by default. For example, the facility technician role has access to the facility classes: sn_ent_facility_model and sn_ent_facility_asset. When a facility technician logs in to the Facility Asset Workspace, they will automatically get access to only the models and assets related to the Facilities model category.

    Based on the mapping, roles get access to the respective asset and model classes. The roles further get access to the workflow tasks and work orders related to those classes. Additionally, you can view information only pertaining to your classes on all dashboards in the workspace. For example, a medical asset manager role can initiate disposal orders only for medical assets because of access configuration. Similarly, a facilities technician role can only work on disposal tasks created for facility assets.

    The Enterprise admin (sn_eam.enterprise_admin) role can modify the default configuration to add more classes to a role. So, the roles for the Medical Asset Workspace, the Facilities Asset Workspace, and the OT Workspace can be configured to access additional classes from different model categories. For example, the Medical technician role can get access to the Facilities classes. Similarly, the Facilities technician role can get access to the Transportation classes. For more details on adding additional classes to a role, see Map enterprise roles to enterprise classes.
    Note:
    A soft filter exists in configurable workspaces that shows information relevant to a particular workspace. You can remove that filter to display assets and models for all classes but only read access is available for the other classes.