Delete custom ACL not working as expected

Sirri
Tera Guru

‎06-10-2024 09:31 AM - edited ‎06-10-2024 09:32 AM

Hi All,

 

I have created one acl which is mentioned * in table and in fields. 

 

I have given role - asset.

 

But user who as asset role still not able to delete the records. Please find the attached document.

 

Please let me know why this happening.

 

Thank you

Preview file
52 KB
0 Helpfuls
  • 350 Views
6 REPLIES 6

SanjivMeher
Kilo Patron
Kilo Patron

‎06-10-2024 09:39 AM

The ACL you have created, shouldn't be created. You are basically giving a role to delete any record in any table.

You should create table specific acls, so that the asset role only have access to delete record from the table they are suppose to.

You need to create a delete ACL as <Table Name>.None, which should give the asset role to delete the record from the table you specified.


Please mark this response as correct or helpful if it assisted you with your question.
0 Helpfuls

Sirri
Tera Guru
In response to SanjivMeher

‎06-10-2024 09:48 AM

@SanjivMeher ,

 I have given table as *  means all tables in the field also I have selected as * It means all as per my understanding. If I'm wrong correct me here.

Thank you 

0 Helpfuls

SanjivMeher
Kilo Patron
Kilo Patron
In response to Sirri

‎06-10-2024 10:43 AM

Yeah. But only admins should have that access. I would suggest not implementing such ACL for non-admin roles. Any particular reason, you would want the asset role to delete records for all tables?


Please mark this response as correct or helpful if it assisted you with your question.
0 Helpfuls

Community Alums
Not applicable

‎06-10-2024 01:24 PM

Hi @Sirri ,

 

The solution you are trying to implement is not the right approach and isn't technically right and doesn't fall under ServiceNow best practices. 

 

I agree with Sanjiv. This type of implementation should be avoided.

Please revisit the requirement with the stakeholders and educate them about the consequences of this implementation.

 

Even then if you want to implement the solution then Please create the ACL as below and restrict only to Asset table- 

SanjayG_0-1718050871173.png

 

Note: Please avoid creating such ACLs as people will access to delete the records and would create lots issues in production.

 

If my response has resolved your query, please consider giving it a thumbs up ‌‌ and marking it as the correct answer‌‌!

 

Thanks & Regards,

Sanjay Kumar

0 Helpfuls