Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.

Control access to a breakdown

Log in to subscribe to topics and get notified when content changes.

Control access to a breakdown

You can control access to specific breakdowns.

Before you begin

Roles required: pa_admin or admin

About this task

There are no visibility options for breakdowns. Instead, access to breakdowns is regulated by ACLs in the breakdown sources.

Procedure

  1. Navigate to Performance Analytics > Breakdown Sources.
  2. Open the breakdown sources record for the breakdown you want to set access to.
  3. In the Security type choice list, select if you want to blacklist (exclude) or whitelist (include) source elements by role based on element security lists.
  4. Define an Elements Security List record and either select the elements to be included or excluded, or use conditions to define which elements should be included.
  5. Specify the roles that have access to the elements security list.

Define an elements security list

An elements security list prevents unauthorized access to breakdown elements.

  1. Navigate to Performance Analytics > Breakdown Sources.
  2. Open an existing breakdown source record.
  3. In the Elements Security List related list, click New.
  4. Fill in the fields, as appropriate.
    Name Description
    Name Descriptive name of the elements security list.
    Description A more detailed description of what the elements security list does and its purpose.
    Active Check box for making the elements security list active (selected) or inactive (cleared).
    All roles Select to indicate that the list applies to all roles. Clear the check box and click the lock icon to specify the roles belonging to this elements security list. You can use the search button to look for specific roles.
    Security type [Read-Only] Security type selected for the associated breakdown source.
    Dimension [Read-Only] Dimension selected for the associated breakdown source.
    Facts table [Read-Only] Facts table selected for the associated breakdown source.
    Select elements Select to specify explicitly the elements that this security list applies to. If this option is cleared, use Conditions to determine which elements to include.
    All elements Select for the security list to include all elements. Clear to specify individual elements in this security list. Default: selected
    Show blank option Select to allow a user on a breakdown dashboard to see scores without any breakdown elements specified. Clear to allow a user on a breakdown dashboard to see only scores for the breakdown elements that are visible to their role.

    This setting affects only widgets that follow breakdown dashboard elements. Users with the admin role can always see unfiltered scores on breakdown dashboards.

    Conditions The conditions for determining which breakdown elements the security list applies to. For example, [User.Manager] [is (dynamic)] [Me]. Conditions are applied on top of the breakdown source conditions. This field is available only if Select elements is not selected.
  5. Click Submit.

Role restrictions with blacklist

If blacklist security is specified for a breakdown source, and any of the roles of a user are on an element security list for that breakdown source, that user cannot see the elements which that security list applies to.

Table 1. Visibility of breakdown element by user role with blacklist security
User role on element security list? Visibility of elements
None of the roles of the user are in an element security list. All elements that the security list applies to are visible.
Any of the roles of the user are in an element security list. None of the elements that the security list applies to are visible.
User has the admin role. All elements are visible.

Role restrictions with whitelist

If whitelist security is specified for a breakdown source, and any of the roles of a user are on an element security list for that breakdown source, that user can see the elements which that security list applies to.

Table 2. Visibility of breakdown element by user role with whitelist security
User role on element security list? Visibility of elements
None of the roles of the user are in an element security list. None of the elements that the security list applies to are visible.
Any of the roles of the user are in an element security list. All elements that the security list applies to are visible.
User has the admin role. All elements are visible.
Feedback