Administer > Application setup > Controlling user access and security > Application profiles

Application profiles

Note Application profiles are not used for modules using Process Designer (other than Knowledge Management). For more information, see Process Designer security model.

Application profiles are security settings that determine which features a user can access from a particular Service Manager application. Each of the seven Service Manager applications has a set of application profiles that determine which features a user can see. An application profile defines the access settings that a particular business function or role has to the application. Typically, System Administrators assign application profiles as part of user role descriptions, but the administrator can also assign an individual application profile that overrides the default settings of a user role.

Users must have an application profile in their operator record to access any application. Each out-of-box application has a profile record named Default to use when a profile does not exist. Each application also has a setting to enable access to the application using only the Default profile.

For example, records in the smenv table store Service Desk rights and privileges information, such as whether a user can close a service desk interaction record. Profiles also store information that may affect the way an application looks and behaves, such as defining a personal search form for a user.

Application profile authentication

When a user attempts to access one of the applications, Service Manager does the following:

  1. Retrieves the profile name from the operator record and accesses the profile record for the specific application.
  2. If Service Manager cannot find a user profile, it uses the Default profile.
  3. If Service Manager cannot find a user profile, and the setting to use the Default profile is disabled, the user is denied access to the application.

Related topics


Environment record