How watchlist field works?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
3 hours ago
Hi All,
So I need to understand how watchlist field works? OOB, can users in the watchlist field able to edit the record? if No, then how it is restricted, is there any OOB script or ACL, which allows users to read records but restrict the write access to record?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2 hours ago
so what's the question?
if business doesn't want the watch list users to edit then handle it via custom ACL on your table
what's the challenge?
💡 If my response helped, please mark it as correct ✅ and close the thread 🔒— this helps future readers find the solution faster! 🙏
Ankur
✨ Certified Technical Architect || ✨ 10x ServiceNow MVP || ✨ ServiceNow Community Leader
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
3 hours ago
@Arkesh Kumar By default, Out-of-the-Box (OOB), users added to the Watch list field cannot edit the record unless they independently possess explicit write permissions via their assigned roles (such as the itil role).
The primary purpose of the OOB Watch list field is to include additional stakeholders in email notifications, not to grant structural write or data-modification access.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
3 hours ago
Yes thats correct now problem is we have enabled Entity based access. and all the users have same role which satisfies ACLs, where as user is not part of entity as per EBA configuration, now if we add that user, to risk record's watch list, will he be able to edit the risk record?
as all users have same access, assigning users to watchlist, is giving write access as well
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2 hours ago
If they aren't from the correct entity, they shouldn't be on the watch list, right?
But, as mentioned by others, being on the watchlist should only do that: make you watch it. If they can also edit, you need to check why that is. Did you use 'access analyzer' to see why that is? Being on the watchlist only allows to write if you are allowed write access to the fields/table. It's not because you are on the watchlist, you can write. Those are separate things. They are allowed to write, because their level of access. And they are put on the watchlist so they receive the notifications of the ticket.
Please mark any helpful or correct solutions as such. That helps others find their solutions.
Mark