- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-14-2018 03:35 AM
Good Morning,
I'm hoping someone can help with this.
We need to restrict access to certain Requested Items and the tasks within that may contain confidential data for example (asking for access to someone's emails for investigation purposes).
We have the catalogue items set up and i believe the way to do this would be by using an ACL.
We would need the requester, requested for and a certain resolver group to have access to the item & tasks but all other resolver groups to be denied read access.
Is this possible?
Any help would be greatly appreciated.
Many Thanks
Solved! Go to Solution.
- Labels:
-
Scripting and Coding

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-14-2018 11:53 AM
Yes, you would want to look at read ACLs for requested item and tasks. You'd probably need a couple of scripted ACLs that check the logged in user and group and then compare against the values on the records.

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-14-2018 11:53 AM
Yes, you would want to look at read ACLs for requested item and tasks. You'd probably need a couple of scripted ACLs that check the logged in user and group and then compare against the values on the records.

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-14-2018 11:56 AM
Yes create read ACL and in the advanced section, you will have to code based on the catalog item, requested for. If you can provide all the details, I can help you write the script.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-14-2018 12:24 PM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-29-2020 01:56 AM
Hi team
I require exactly the same thing but, I'm afraid, I'm not great with ACLs or scripting.
- I have a catalog item called 'Account Audit Request' and a workflow to have it approved
- I have created a group that should have access to it called 'Account Audit Team'
I need these requests to be heavily locked down so even the Service Desk team can't see them (or anyone with the generic ITIL access) and only visible to the 'Account Audit Team' group.
I have two catalog tasks generated as part of the workflow to provide and revoke access, so the assignee of that task will also need access to catalog tasks only and not the RITM, and only when it is assigned to them.
Is this doable, and, if so, how do I implement it?
Many thanks