I created a custom user level to provide view only access to entitlements, access profiles, and roles - Access Profile read only, Entitlement read only, and Roles read only.
The test user is assigned this user level via their identity. When I log in as that user, I am able to see the Admin button along with the 3 options. I am able to see the list of access profiles but when I click on entitlements or roles, nothing is listed.
I checked the data segmentation and we don’t have anything enabled here. What else could be stopping this test user to view entitlements and roles?
Can you plz confirm the user level is fully applied and active rather than saved as a draft? A draft still shows the Admin menu but won’t enforce the permissions, which would give you exactly this: menu appears, lists come back empty.
Also, did the test user log out and back in after you assigned it? Level changes don’t always take effect mid-session.
Log in as the test user and try hitting the ISC API directly to determine if it’s a UI rendering issue or a genuine permission block. If the API returns empty or 403 then confirmed permission/scope issue, apply fixes above.
I checked the setup for the custom user roles and it shows active. I am the test user and I did log out and back in after getting it assigned. Please see attached.
I created a PAT for the user and had it list the following and I got the following results. *Note that this custom user levels contain read only access to Access Profiles, Roles, Entitlements, and Governance Groups.
Access Profiles: returned list of access profiles
Governance Groups: returned list of governance groups
We’ve had a P2 ticket open about this for over a month. It seems like the feature just doesn’t work. The latest update I have is that multiple engineering teams are now working on it.
