Incident record(eg:INC0010001) need to visible only for the particular Assignment group members.

Go to solution
praveen1231
Tera Contributor

‎10-03-2023 12:23 AM

Hi,

My scenario is- I had created new Record Producer and submitted the record (INC0010001). I added the Record Producer script to set the Assignment group. When I impersonate with another user who is not in assignment group, the record (INC0010001) need not to be displayed. Incident record (INC0010001) is only visible to assignment group members, who is in the incident table assignment group filed. Please let me know if you have any idea regarding this. Thanks

0 Helpfuls
  • 1,258 Views
2 ACCEPTED SOLUTIONS

Go to solution
Peter Bodelier
Giga Sage
In response to praveen1231

‎10-03-2023 12:55 AM

In that case, you are going to need to review your ACL's.

 

All Read ACL's which contain some relationship to a user in a group or a group itself will need to be checked.

In condition you can add Assignment group , Is dynamic , One of my groups.

 

Please make sure you don't edit the ACL's related to for example the caller, watchlist etc, because you will limit the user to see and update their own records.


Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.

View solution in original post

0 Helpfuls

Go to solution
Peter Bodelier
Giga Sage
In response to praveen1231

‎10-03-2023 01:31 AM

Hi @praveen1231,

 

Have you gone through all other incident ACL's? Just creating a new one is not enough.

If any ACL's matches it will give access, so the OOTB ACL's, are now probably just saying, this user has itil or incident_read role, so that user can see all incidents.


Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.

View solution in original post

26 REPLIES 26

Go to solution
Peter Bodelier
Giga Sage
In response to praveen1231

‎10-03-2023 01:31 AM

Hi @praveen1231,

 

Have you gone through all other incident ACL's? Just creating a new one is not enough.

If any ACL's matches it will give access, so the OOTB ACL's, are now probably just saying, this user has itil or incident_read role, so that user can see all incidents.


Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.

Go to solution
praveen1231
Tera Contributor
In response to Peter Bodelier

‎10-03-2023 01:45 AM

@Peter Bodelier Please verify my screen shorts.

praveen1231_0-1696322688354.png

praveen1231_1-1696322704507.png

 

0 Helpfuls

Go to solution
Peter Bodelier
Giga Sage
In response to praveen1231

‎10-03-2023 01:47 AM

Hi @praveen1231,

 

Those look good. But keep in mind, there may be more ACL's affecting this.


Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.
0 Helpfuls

Go to solution
praveen1231
Tera Contributor
In response to Peter Bodelier

‎10-03-2023 02:01 AM

@Peter Bodelier  but I above mentioned screen shorts couldn't work.

0 Helpfuls

Go to solution
Peter Bodelier
Giga Sage
In response to praveen1231

‎10-03-2023 02:05 AM

Why wouldn't they?

 

As long as there are no other ACL's permitting view, this should work just fine.


Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.
0 Helpfuls