Alisha Posted August 17, 2021 Share Posted August 17, 2021 Hello, We would like to use the 'Lock Resolution' for a particular role so that certain analysts can't resolve a request until a Human Task is completed. (We have created roles - without access permissions - to group users in.) Is it possible to achieve this using a Variable? I couldn't find a way to do this. Any help would be much appreciated. Many thanks, Alisha Link to comment Share on other sites More sharing options...
Steve Giller Posted August 17, 2021 Share Posted August 17, 2021 @Alisha The Access Control options are on or off, they're not selective, with the exception of "... Full Access" and "Service Desk Admin" roles as detailed in the wiki: Quote Use the Access Control to lock or unlock the Details section or the Actions on a request. Only users with the appropriate application right (update locked requests) will be able to modify the details or use an Action once locked. This right has been added to the following roles: Incident Management Full Access, Change Management Full Access, Problem Management Full Access, Release Management Full Access, Service Request Full Access, and Service Desk Admin. Link to comment Share on other sites More sharing options...
Alisha Posted August 17, 2021 Author Share Posted August 17, 2021 Hi @Steve Giller, so we're not able to use the Variable option in the 'Lock Resolve'? We have a custom role created that is just used to group users rather than give permissions. We'd like to use this custom role to restrict the Lock Resolve, as many of our analysts already have the Incident Management Full Access, so they would still be able to resolve something when we don't want them to! Link to comment Share on other sites More sharing options...
Steve Giller Posted August 17, 2021 Share Posted August 17, 2021 @Alisha You can use the Variable option, but not in the way that you're thinking. The parameter requires a boolean value, so supplying a variable with a true/false value will work, but supplying a variable with a value of "naughtyUsersWhoCloseThingsTheyShouldNot" will have unexpected results. 1 Link to comment Share on other sites More sharing options...
Alisha Posted August 17, 2021 Author Share Posted August 17, 2021 Thanks @Steve Giller. Is there another way we can make this work? Apart from removing the Incident Management Full Access role from users? Link to comment Share on other sites More sharing options...
Steve Giller Posted August 17, 2021 Share Posted August 17, 2021 @Alisha Not that I'm aware of, no. Link to comment Share on other sites More sharing options...
James Ainsworth Posted August 17, 2021 Share Posted August 17, 2021 Alisha, I would be interested to know if there are things missing from the Incident Manager User role that is requiring you to give the Incident Management Full Access role to users? As the name suggested, the Incident Management Full Access provides full access and is a great role for team leads or managers. The Incident Manager User role, is more focused on Service Desk staff. Link to comment Share on other sites More sharing options...
BobbyB Posted January 27, 2023 Share Posted January 27, 2023 @James Ainsworth @Alisha Hi James, we're still having difficulties with this lock function. Now if a User has the roles Incident Management User and Service Request Full Access, would they by having the Service Request Full Access then be able to bypass the lock on Incidents? Thanks, Bobby Link to comment Share on other sites More sharing options...
James Ainsworth Posted January 27, 2023 Share Posted January 27, 2023 HI @BobbyB No, that shouldn't be the case where the Service Request Full Access role would allow bypassing the locks on an incident. Are you using any custom roles where these extra rights may have been given? Link to comment Share on other sites More sharing options...
Alisha Posted January 30, 2023 Author Share Posted January 30, 2023 Hi @James Ainsworth, These are the User's roles. Is there anything in here that would allow the member of staff to bypass the locks on an Incident? Many thanks, Alisha Link to comment Share on other sites More sharing options...
James Ainsworth Posted January 30, 2023 Share Posted January 30, 2023 Hi Alisha, Those all look like standard roles and nothing in there that jumps out which would give this right to bypass the locks. Have you raised this with Hornbill support? Link to comment Share on other sites More sharing options...
DRiley Posted February 13, 2023 Share Posted February 13, 2023 @James Ainsworth I hope you're well. The "Full Access" role variants allow agents to reopen tickets. They also grant the "Advanced task completion" capability for the user. In my experience, these are the actions that usually need to be possessed more broadly among a team. Having the "full access" roles overriding locked actions (something that typically needs to be more selective in terms of who can do this) often conflicts with the need to reopen tickets and complete other peoples tasks. I hope that helps, Dan Link to comment Share on other sites More sharing options...
Alisha Posted March 1, 2023 Author Share Posted March 1, 2023 Hi @James Ainsworth, Does the 'Advanced Request Task Completer' role only apply if the task has been assigned to a User? So if someone has the Service Desk Admin role and wants to reassign a task that is currently with a team they are not a member of, will this not work? We do have a need for analysts to reassign tasks to different teams/users, which I thought the Service Desk Admin role would allow them to do. Many thanks, Alisha Link to comment Share on other sites More sharing options...
Steve Giller Posted March 1, 2023 Share Posted March 1, 2023 @Alisha Advanced Request Task Completer is a right that sits within a Role, not a Role in itself. The name is also accurate - it allow completion of Request Tasks - it does not affect assignment of Tasks. There is a section on reassignment on the Tasks wiki page which details the rules around this. Rule 1 is, basically, ensure the Task has an Owner. Link to comment Share on other sites More sharing options...
Alisha Posted March 1, 2023 Author Share Posted March 1, 2023 Hi @Steve Giller, We often have tasks assigned to a team so that anyone in the team can complete the task. However, the request is sometimes reassigned to a different team and we would need our Service Desk analysts to reassign this task. Is this something that could be considered as an enhancement please? Many thanks, Alisha 1 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now