Roles define what the users can do in Snow.


Roles are used for assigning specific permissions or to give access to specific items or functionalities, for example, to give access to specific Microsoft 365 views. Roles can also be used to give access to multiple parts of the system to easily assign a user to a function in your organization, for example, a Software Asset Manager role.

Roles and permissions

A role is a collection of permissions. The permissions give access to selected functionality and define what the users can do in Snow.

The permissions have different levels, for example, permission to create, read, update, and delete, or permission to only read.

Custom roles

There are predefined default roles in Snow that you can use as they are. You can also create custom roles to give access to selected functionality. You can base custom roles on a default role or another custom role, or create a custom role without using a base role.

Note that, a custom role and its base role are not connected. Neither changes to the base role nor changes to the custom role will affect one another.

Example 1.

Role B is based on Role A so that the two roles include the same permissions. Role A is then updated with additional permission. The additional permission does not automatically appear in Role B.