- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-03-2023 12:23 AM
Hi,
My scenario is- I had created new Record Producer and submitted the record (INC0010001). I added the Record Producer script to set the Assignment group. When I impersonate with another user who is not in assignment group, the record (INC0010001) need not to be displayed. Incident record (INC0010001) is only visible to assignment group members, who is in the incident table assignment group filed. Please let me know if you have any idea regarding this. Thanks
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-03-2023 12:55 AM
In that case, you are going to need to review your ACL's.
All Read ACL's which contain some relationship to a user in a group or a group itself will need to be checked.
In condition you can add Assignment group , Is dynamic , One of my groups.
Please make sure you don't edit the ACL's related to for example the caller, watchlist etc, because you will limit the user to see and update their own records.
Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-03-2023 01:31 AM
Hi @praveen1231,
Have you gone through all other incident ACL's? Just creating a new one is not enough.
If any ACL's matches it will give access, so the OOTB ACL's, are now probably just saying, this user has itil or incident_read role, so that user can see all incidents.
Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-03-2023 02:11 AM
@Peter Bodelier But it not working fine that's the problem here!!😥
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-03-2023 02:13 AM
Then there still are other ACL's giving access. That's why you really have to go through all read ACL's on the table.
Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-03-2023 02:16 AM
@Peter Bodelier What should I change? I checked all the acl with user has itil or incident_read role
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-03-2023 02:27 AM
These are the ones I can say up front, which I know exist OOTB. I do not know which ACL's in your instance would also give access.
Help others to find a correct solution by marking the appropriate response as accepted solution and helpful.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-03-2023 02:54 AM
@Peter Bodelier it works fine!! thanks for your help.
