Edit Personal Filters for user with ITIL role displaying a security constraint

chloetoler · ‎08-31-2018

As an admin, I can go into a table list view and edit my personal filters; however, when I impersonate a customer with an ITIL role, and go to edit personal filters, I get an error saying "Security constraint prevent access to requested page." I have removed all the ACLs on this table down to their basic levels of everyone can CRUD with no luck. I have given the user filter admin and no luck. And I have opened up the application access to this filter table so everyone can CRUD. The user said they used to be able to edit their filters and this issue came around after our upgrade to Kingston.

Working on Kingston Patch 6.

Anyone else having this issue or know where else I can look for a solution?

Thanks!

chloetoler · ‎04-16-2019

Hi everyone - Here is what I found on the SN Hi website that resolved my issue. However, it does note it is fixed in the London release.

There is an ACL running on sys_filter_list table which restricts all the users except the users with the role 'sn_esm_user' and 'admin' which results in this scenario.

Disable this ACL as a workaround:

https://<sys_id>.service-now.com/sys_security_acl.do?sys_id=16cea4dd3d600300964f4852aee811f1

Related Problem: PRB1280418

View solution in original post

Michael Ritchie · ‎08-31-2018

All the Edit personal filters menu item is doing is redirecting to the sys_filter table applying a query. If you login as that user and enter "sys_filter.list" in the filter navigator what happens?

chloetoler · ‎08-31-2018

It also gives me the same Security Constraint error. I have no ACLs on the table but one for create, read, write, and delete that don't have any roles, so in theory anyone should be able to access them. I have another application that is the same patch and it seems to work fine for users. I'm wondering if something was messed up on it during the upgrade?

Michael Ritchie · ‎08-31-2018

Can you please post a screenshot so I understand the specific error? If you have no ACLs by default ServiceNow denies access so that is definitely a problem.

chloetoler · ‎09-04-2018

I can't attach a screenshot since it's on a private system. However, it's just a blank white screen that says "Security constraint prevent access to requested page." I do have ACLs but for Create it's just a basic Create ACL with role of snc_internal which should open up the create to anyone with that role (which is everyone in the system). Same with Read, Delete, and Edit. They are just open ACLs. I tried this in a different box with the same upgrade and it works in that one. Everything I checked is the same in both boxes; however, this worked before the upgrade and doesn't know. So I'm wondering if it is something with the upgrade.