Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

ACL's

Ankitha4
Tera Contributor

ā€Ž11-03-2023 03:52 AM

Requirement is to restrict aws events access to only members who has aws role .We have written a acl for that but the aws events are visible to admin , so we have written a query business rule to restrict access to admin as well ,

this is the query business rule 

Ankitha4_0-1699008538676.png

But if the user has aws role and is a admin then the aws events are not visible.Can you suggest a code to include that condition as well in the above code.

0 Helpfuls
  • 424 Views
7 REPLIES 7

Anurag Tripathi
Mega Patron
Mega Patron

ā€Ž11-03-2023 04:03 AM

Hi,

Any reason why you went with Query Business Rule?

You can easily manage this with ACL with Admin Overrides checkbox unchecked. Have the role added as aws and add condition as needed.

-Anurag
0 Helpfuls

Ankitha4
Tera Contributor
In response to Anurag Tripathi

ā€Ž11-03-2023 06:39 AM

Hi Anurag , 

thanks for the reply , we tried unchecking the admin overrides check box ,but it didn't work.

Ankitha

0 Helpfuls

Anurag Tripathi
Mega Patron
Mega Patron
In response to Ankitha4

ā€Ž11-03-2023 06:56 AM

Are there any more ACLs on the sale level that have admin override true? If so then uncheck form that too.

By same level I mean <table name>.<none> OR <table name>.<*>

 

The challenge with BR is you need to see if the user has aws role directly and not inherited form admin. This can be easily dont if there if the users would be member of a group instead of aws role.

-Anurag
0 Helpfuls

Ankitha4
Tera Contributor
In response to Anurag Tripathi

ā€Ž11-06-2023 02:04 AM

the user is member of the group but he has aws role inherited from the group , but he is not able to see aws events

0 Helpfuls