Security Scoping/Performance issues - Catalog Item Groups and Open form performance
Running into issues with opening work items taking a few minutes to open (CR's most heavily affected as they have the most related Activities)
Use Case (All testing done on primary workflow server) SCSM 2012 R2 UR9
Have an Advanced Operator role for a specific user group =Testing
On the testing role
- Queues = All access
- Configuration items = All access
- Catalog Item Groups = All access
- Tasks = All access
- Views = All access
- Form Template = All access
When Joe opens the console he can access all work items without issue.
I make one change
Catalog Item groups = Remove All access and set to provide access to only the selected group. Then place check box in all listed group.
When Joe opens the console and attempts to open a CR it takes about 3 minutes to open the work item before editing can occur.
Effectively this should have not changed any rights. But had major impact on performance.
On top of this have a end user role that is scoped to specific catalog item groups and when a AD Group that contains Joe the issue occurs.