"In that case service_desk role users should only be able to see this and all others will be negated. "

- this is the expected result, yes.

"Did you check if the users who are able to see by chance somehow have inherited this role via roles or groups and not directly ? "

 - Yes.  And, no she does not have the role(s) required but she is still able to see the records.

Also did they log out and re-login for it to reflect ? 

- Yes.

Hello @MWright1 

She will be able to see all records only those records she should not be able to see "on which this applies" - assignment group thing.

Did you also confirm this ? 

If above is also confirmed and she definitely has no roles, this could be any defect in servicenow - check thoroughly the points I mentioned once. 

And if all fits, please log a servicenow case. 

Kindly mark my answer as helpful and accept solution if it helped you in anyway. This will help me be recognized for the efforts and also move this questions from unsolved to solved bucket. 

Regards,

Shivalika 

My LinkedIn - https://www.linkedin.com/in/shivalika-gupta-540346194

My youtube - https://youtube.com/playlist?list=PLsHuNzTdkE5Cn4PyS7HdV0Vg8JsfdgQlA&si=0WynLcOwNeEISQCY

She was able to see everything she should AND those she shouldn't.  I have already created a ticket with ServiceNow.  I am waiting for responses.  Thanks!

Great !! @MWright1 

In case my response or suggestions helped you in anyway. Kindly mark my answer as helpful and accept solution (for the case thing). This will move this question from unsolved to solved bucket and also help me gain recognition for the efforts on this platform. 

Regards,

Shivalika 

My LinkedIn - https://www.linkedin.com/in/shivalika-gupta-540346194

My youtube - https://youtube.com/playlist?list=PLsHuNzTdkE5Cn4PyS7HdV0Vg8JsfdgQlA&si=0WynLcOwNeEISQCY