Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.
Versions
  • London
  • Kingston
  • Jakarta
  • Istanbul
  • Helsinki
  • Geneva
  • Store
Close

Elevated privilege

Elevated privilege

A role that requires elevated privilege prevents the system from assigning it to a user at login. Instead, a user must manually elevate privileges to receive the elevated role.

In the base system, only the security_admin role requires elevated privilege.

Figure 1. The security_admin role
The security_admin role
Note: The record for the System Administrator (admin) role is only visible to users who elevate privileges to the security_admin role.
An elevated privilege role only lasts for the duration of the user session. Session timeout or logout removes the role. To use an elevated role, all these conditions must be met:
  • The role must be assigned to the user.
  • The user must manually elevate roles.

User who do not have an elevated privilege role do not see an option to elevate roles. For example, in the base system, only the System Administrator (admin) user has the security_admin role.

Figure 2. Roles assigned to the System Administrator (admin) user
The list of roles assigned to the System Administrator user.

Therefore in the base system, only the System Administrator (admin) user has the option to Elevate Roles.

Figure 3. Elevate roles