Hi,

You'd need to give security_admin to them to be able to work with ACLs...are far as how to limit what ACLs they can alter...you'd most likely need to go with a BR query on the ACL table...and set conditions on what they can see (so limit their query to just table (x,y,z). It' a bit of an odd situation because giving them permission to ACLs..sort of opens the door...then trying to limit it with a BR could be sketchy. You'd want to try that out and see how it goes.

https://docs.servicenow.com/bundle/newyork-application-development/page/script/business-rules/concep...

So you may have to tap in to how they are separated in your instance. Is it my company or department or something? Somehow you'll need to query for that flag...then use that flag to define their query for the ACL table.

Please mark reply as Helpful/Correct, if applicable. Thanks!