Restrict groups from Hr Service case creation

Andre Jones · ‎12-04-2023

Hello,

I've created several groups ASD, ASS, and ADA. They should not have access to Report Misconduct HR Service.

I don't want them to be able to read, write or delete. I notice that you cannot write ACL's towards HR Services. I tried doing the COE Security Configuration route but it only allows for read/write restrictions.

What should I do?

Community Alums · ‎12-04-2023

Hi @Andre Jones ,

You will have to use COE Security Configurations for this requirement.

Coming to "Delete", if any user/Group cannot read , then how can they Delete?

Andre Jones · ‎12-05-2023

When impersonating a user within one the groups I've blocked. They can still create case under the service that I don't want them to be able to do. Once I created the case, the case itself was visible. So therefore, can still read their case they created in that HR Service.

Community Alums · ‎12-04-2023

Hi @Andre Jones ,

Do you want that when current log-in user is part of certain groups, they will not be able to select the specific HR Service in the HR Case Creation form?

If that is the case you can modify the Script Include to exclude those specific HR Services from the query.

Andre Jones · ‎12-05-2023

Yes, I don't want members of the group to be able to create any cases within the HR Services that I've created, because they can still see the cases, they've created but no other cases for some reason.

Thank you. I'll give this a shot.