ACL

vinayak_2023 · 2 hours ago

Hi, I have a requirement where I need to create a custom role so that user with that role can access enhancement of type CRM and can add work notes to it - here type is custom field in the enhancement table. I have created the custom role but having issues while creating ACLs since the ACLs which I have created are conflicting with other ACLs

Ankur Bawiskar · 2 hours ago

@vinayak_2023

you can have separate table.None READ ACL on that table for your type

what did you start with and where are you stuck?

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader

vinayak_2023 · 2 hours ago

1:I have created Table level read and write ACL for enhancement table adding required role to it without any conditions since with conditions I am not able to see the work note field

2: Created wildcard read ACL for enhancement table with role and condition enhancement type is CRM

3:Created read and write ACL for the field work notes with with role and condition enhancement type is CRM
after this when I have impersonated as a user with proper role, user can update on few other fields other than work notes which is not correct also user can see enhancement of other type than CRM

Ankur Bawiskar · an hour ago

@vinayak_2023

first they should have table.None READ Access to the table

you should debug which ACL is blocking.

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader

Nehal Dhuri · 14m ago

@vinayak_2023, you can use Access Analyzer to debug ACLs easily.
https://www.servicenow.com/docs/bundle/zurich-platform-security/page/integrate/identity/task/view-pe...

Please hit like and mark my response as correct if that helps