How to create an ACL to restrict Application/Module Access from a Role

Rae Khan
Tera Contributor

‎09-28-2023 01:24 PM

Hi all,

I'm trying to restrict an application from the All dropdown menu from a certain role. 

Is anyone familiar with using a script within an ACL to limit this?

Eg. A user with the 'mobile_analytics_viewer' role should not be able to see the 'Service Portal' from the all dropdown?

 

Any help would be greatly appreciated. 

 

0 Helpfuls
  • 688 Views
2 REPLIES 2

AnveshKumar M
Tera Sage
Tera Sage

‎09-28-2023 07:32 PM

Hi @Rae Khan 

This can be best achieved by a Query Business Rule on sys_app_module.

 

The BR Should be a Query Business Rule and Advanced box is checked.

In the BR Condition check does the user have the mobile_analytics_user like gs.getUser().hasRole('mobile_analytics_viewer')

 

And in the Script fields add a query to filter out the application you don't want to display.

 

current.addQuery('sys_id', '!=', 'sys ID of the service portal module');

 

Please mark my answer helpful and accept as solution if it helped you 👍

Thanks,
Anvesh

Vrushali Kolte
Mega Sage

‎09-28-2023 11:06 PM

Hi @Rae Khan ,

 

To restrict access to an application for a specific role in ServiceNow:

  1. Click on the "Edit Application" button located next to the Application name. From there, add the specific role as demonstrated in the attached image.

    VrushaliKolte_0-1695967478145.png

     

    VrushaliKolte_1-1695967512456.png

     

  2. Alternatively, you can go to the sys_user_role table, open the role record, and include the application along with its module to limit access, as depicted in the provided image.

    VrushaliKolte_2-1695967536415.png

     

If my answer solves your issue please mark it as correct ✔️ and Helpful 👍 based on impact.

0 Helpfuls