Flow designer throws 'operation prohibited by security rules' error in one instance

maheshkumar9347
Tera Contributor

‎09-11-2024 06:32 AM

Hi,

There exists a catalog item associated with a flow. When I impersonate as end user and submitted catalog request. Again unimpersonated and as a itil admin, I have opened the ritm in native view where the approvals are not getting triggered and there was an error in the flow 'Flow operation was prohibited due to security rules'. Look Up record in sc_task table step was failing. This all happens in dev instance of service now.

 

But with the same user and with the same roles in qa instance, the ritm goes with the flow till the end.

 

Please assist what can be the issue here.

0 Helpfuls
  • 1,023 Views
4 REPLIES 4

Zach Koch
Giga Sage
Giga Sage

‎09-12-2024 05:20 AM

Can you confirm, in your flow, what the the Run As is set to, whether it is User who initiated the session, or System User? If it is set to User who initiated the session, then ACLs are enforced and the user probably has the correct roles in QA instance, and not correct roles in the dev instance. If you change it to Run as System User, that runs with elevated privileges and wont get stopped by ACLs.

If this information helped resolve your issue, please remember to mark response correct and thumbs up to help future community members on this information, thanks!
0 Helpfuls

maheshkumar9347
Tera Contributor
In response to Zach Koch

‎09-12-2024 06:23 AM

Hi Zach,

In the flow, Run As was set to 'System User' only and also the user is having the same roles in dev and qa instance for sure but still the error is getting populated.

 

Thanks,

Mahesh

0 Helpfuls

Zach Koch
Giga Sage
Giga Sage

‎09-12-2024 06:47 AM

Are the ACLs the same on the sc_task table between both instances?

If this information helped resolve your issue, please remember to mark response correct and thumbs up to help future community members on this information, thanks!
0 Helpfuls