Group By field(custom field) throws "Insufficient access for query_range" for client user
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
an hour ago
Hi All,
I am investigating a reporting issue after a recent ServiceNow upgrade.
Scenario:
Report is built on cmdb_ci.
Report uses Group By = Resource Group (custom field).
For some users (including admins), the report works correctly.
For one specific user, the report fails with an error similar to:
Insufficient access for 'query_range'
If I remove the Group By and set Group By = None, the same user can see all report data successfully.
Observations:
User has access to the underlying records because the data is visible when grouping is removed.
The issue occurs only when ServiceNow performs the grouping/aggregation on the Resource Group field.
No field-level ACL exists on the custom Resource Group field.
The field values are visible in list view for the affected user.
Questions:
Has anyone seen query_range errors affecting reports that use Group By?
Does report grouping internally trigger query_range ACL evaluation?
Were there any upgrade changes related to query_match / query_range ACL enforcement that could impact report aggregations?
What is the best way to troubleshoot which ACL is blocking the aggregation for the affected user?
Any guidance would be appreciated.
Thanks!