Restrict access to the reports based on groups that the logged in user is present in.

Sharan Ellendul · ‎07-11-2025

Hi All,

There is a list collector field called "Access Groups" on Risk Table, which hold the groups that are having access to the risk record. There is an ACL which will only shows that only the risks that the users has access to, based on groups present in Access Groups field. This is working fine.

There is a OOB report on Risk Table which shows the total count of records (The report is non-editable and is in OOB Risk workspace). But the total count here is overall count of risk records, not just the count of the risks that user has access to. (It is just not limited to one report, there are many reports on risk table, and same thing is happening).

Could anyone please suggest a way of achieving it, so that the count of records matches the number of records that the logged user has access to?

Ankur Bawiskar · ‎07-11-2025

@Sharan Ellendul

I believe that report on workspace is not taking into account the ACL.

Seems to be a platform limitation.

Did you try replicating this for some other table such as incident etc to confirm the behavior?

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader

Sharan Ellendul · ‎07-11-2025

@Ankur Bawiskar

Yeah this is happening for all the tables.

Ankur Bawiskar · ‎07-11-2025

@Sharan Ellendul

I believe it's a platform wide behavior.

Whenever single scope report is used, it doesn't take into account the ACL

see this old post with similar issue.

Read ACLs working on list reports but not on Single Score Reports

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader