User doesn't have permission to SCTASK Variables

dustinjones · ‎11-16-2023

Hello,

Have a Flow that takes the RITM that is created from the Service Catalog and it creates multiple SCTASKS passing all the variables from the RITM to SCTASK. The Assignment groups on the SCTASKS don't have permission to see the RITM. For some reason this prevents them from being able to see the Variables on the SCTASK. As soon as I add someone to the group that the RITM is assigned to then the variables show up for that user on the SCTASK. I am preventing fulfillers from seeing tickets unless they they are the requestor, on the watchlist, assigned to or a member of the assignment group using a Business Rule.

I am unsure how to give the user permission to see the variables on just their SCTASK. I assumed the flow was copying the variables to the SCTASK but it seems to be a reference from my testing.

Any help is appreciated.

Thanks

AshishKM · ‎11-16-2023

Hello @dustinjones ,

In this case , you have to check the ACL running on Variable table. Allow read/write access based on user’s ( one of assignment group ) matched with RITM / SCTAK assessment group.

-Thanks,

AshishKMishra

Please mark this response as correct and helpful if it helps you can mark more that one reply as accepted solution

Tom Siegel · ‎11-16-2023

It sounds like an ACL issue, If you are using reference fields, then the users and or groups that you want to see the variables should have a read ACL on the reference table.

FWIW If you need to do ACL work, best practices would be to add the role from an existing ACL to a Group or Groups then users to that group. I don't recommend adding ACL's individual users. The same would be true if you create a custom ACL

I have run into this issue in a Catalog item where the appropriate users can not view the values in a reference field. So I had to do some ACL work on the reference table

Dr Atul G- LNG · ‎11-17-2023

Hi @dustinjones

Please check these ACL:

*************************************************************************************************************
If my response proves useful, please indicate its helpfulness by selecting " Accept as Solution" and " Helpful." This action benefits both the community and me.

Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/atul_grover_lng [ Connect for 1-1 Session]

****************************************************************************************************************

dustinjones · ‎11-21-2023

I have figured out the problem but do not yet know a solution. I created a business rule to lockdown access to RITM and SCTASK's based on a few items. Assignment group, assigned to, watchlist, creator. This is preventing the assignment group on the SCTASK from seeing the variables on the RITM (which are added to SCTASK via the flow designer) if they are not in the assignment group on the RITM. If I disable the Business Rule the variables are visible on the SCTASK regardless of what group it is assigned to. I am not sure how to lock down visibility to the RITM but still have the variables on the SCTASK.