Other users not able to view cmdb_ci_service records after creating a custom acl
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-06-2024 02:12 AM - edited 11-06-2024 02:31 AM
Hi all, I'm facing an issue with acl.
Suppose I have 3 roles - A,B and C, and 3 BUs - I, J, K
I created a custom READ ACL in the cmdb_ci_service table, where in the roles I've given the 3 roles A,B and C, and in the script I've written, if BU is any one of I, J and K, answer = true.
I am facing an issue where the other users who were able to access the cmdb_ci_service records earlier, are no longer able to access them now.
What can be the possibile reasons, and how do I fix this?
PS: I did not update any existing ACL.
Thanks,
Sudhangshu
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-06-2024 03:56 AM
Hi @sd2097 ,
Due to your custom ACL you are restricting to view to other user who does not have ABC role and does not belong to BUs IJK.
Now, You have to check other read acl which provide access. You have to add those condition as well in your custom ACL to provide access to.
Lets say other acl has role x then you just need to add "x" to role as well as in your script.
-------------------------------------------------------------------------
If you found my response helpful, please consider selecting "Accept as Solution" and marking it as "Helpful." This not only supports me but also benefits the community.
Regards
Runjay Patel - ServiceNow Solution Architect
YouTube: https://www.youtube.com/@RunjayP
LinkedIn: https://www.linkedin.com/in/runjay
-------------------------------------------------------------------------
