Hiding attachment in RITM.

Santhosh Koonan · ‎05-15-2025

Hi,

I have a catalog item available to all internal users, that has a mandatory attachment in it. This attachment is a sensitive one and should be accessible only to a specific user group (eg: HR Dep.). The flow attached to this catalog item sends tasks to several fulfiller groups. Currently the attachment can be accessible to all fulfillers. As this is a sensitive document, we need to restrict access to this file only to HR Dep. Any recommendations to achieve this? Please note, we have several other catalog items with attachments and in general attachments needs to be accessed by all fulfillers, except this specific one.

Arun_Manoj · ‎05-15-2025

Hi @Santhosh Koonan ,

Please check given link attached below

https://www.servicenow.com/community/itsm-forum/is-there-a-way-to-restrict-the-attachment-on-ritm-to...

Thanks

Arun

Santhosh Koonan · ‎05-18-2025

Thanks Arun

It helps to understand restricting access through ACL. However, in my case I need to apply this restriction only for a specific catalog item. This solution will apply the restriction to all catalog items and all attachment. Also in my case, the attachment that I need to restrict access is not the default sys_attachment variable. It is a custom variable.

Ankur Bawiskar · ‎05-18-2025

@Santhosh Koonan

you can create READ ACL on sys_attachment and use advanced script and check the catalog item name associated to that RITM.

I shared solution for this few years ago, please enhance to include catalog item name in the query

Is there a way to restrict the attachment on ritm to only for requester and assignment group

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader