Roles assigned to an invalid user.

Impact area

Security

Severity

Low

Affected element

Role Group

Rule ID

SN-0451

Impact

This rule checks for rows on the sys_user_has_role table (User Roles) which contain empty user references. Roles assigned to an invalid user generate extra effort to security administrators and can lead to improper access control.

Remediation

 Edit the user field in the sys_user_has_role table and change the empty reference to the a valid one or delete the record if it is not needed


Time to fix

10 min

What's here


Related content

ServiceNow rules





Last modified on Oct 4, 2022