ACL for read access to every table

jna2756 · ‎06-16-2016

Hi all,

We have a need to create an ACL for a user/role (it's a service account) that will have read access to every table on ServiceNow. I assume creating a " *.* " read ACL with the custom role we created for the user will work but wanted to double check make sure this wouldn't affect anything else since it is " *.* ".

Thanks in advance,

Joshua Anderson

JC Moller · ‎06-16-2016

Hi,

Could you take advantage of the snc_read_only role?

I have used it in similar situations in combination with some other roles/groups that give access to the tables themselves. Quick and less dirty

ServiceNow Read Only Role - ServiceNow Wiki

BR,

Jan

View solution in original post

Chuck Tomasi · ‎06-16-2016

Hi Joshua,

You may actually want to create two ACLs. One for "*" (all records on all tables) and one for "*.*" (all fields on all tables.)

As always with security, TEST, TEST, TEST!

Using Access Control Rules - ServiceNow Wiki

Security Best Practices - ServiceNow Wiki

Geeky · ‎02-26-2020

Hi Chuck, If I create new ACLs to provide read only access to Asset table and Incident table, will that be under compliance? What I heard is, ServiceNow pays penalty in case of new ACLs are created. Please correct me.

safderraza · ‎06-14-2023

Hi Chuck,

I created 2 ACLs and assigned them to a role, but I still can't access tables

What else do we I need to do?

JC Moller · ‎06-16-2016

Hi,

Could you take advantage of the snc_read_only role?

I have used it in similar situations in combination with some other roles/groups that give access to the tables themselves. Quick and less dirty

ServiceNow Read Only Role - ServiceNow Wiki

BR,

Jan