How do I give only "view" role or permission to a user to certain tables?

sifynm · ‎02-22-2017

As per the URL: http://wiki.servicenow.com/index.php?title=Role_Delegation#gsc.tab=0 I read the following:

4.2 Preventing Roles from being Delegated

By default, the following fields are not delegatable:

admin

public

nobody

role_delegator: A user with the role_delegator role cannot delegate this role to other group members.

My requirement, I have created a table by name "Sify Servers" and "SR IR Tables" which are as shown in the attachment. Please let me know how I can create an access for the user who should be able to only view these tables, but should not be able to modify any fields. I have tried giving him an "admin" role which works, but if I remove the user role it does not work. I have read through this wiki for creating roles URL: http://wiki.servicenow.com/index.php?title=Creating_Roles#gsc.tab=0 but not sure how I can implement it. If there are any steps to follow kindly let me know.

shloke04 · ‎02-24-2017

Hi,

1) First you need to enable the Elevated Privileges to write an ACL which can be done as shown below:

2) Click on the ACL module visible in your screen shot also shown below:

3) Once you click on ACL highlighted above in red then you would be getting the New button to crate an ACL as shown below:

Hope this helps. Mark the answer as correct/helpful based on impact.

Regards,

Shloke

Hope this helps. Please mark the answer as correct/helpful based on impact.

Regards,
Shloke

View solution in original post

shloke04 · ‎02-24-2017

Hi,

1) First you need to enable the Elevated Privileges to write an ACL which can be done as shown below:

2) Click on the ACL module visible in your screen shot also shown below:

3) Once you click on ACL highlighted above in red then you would be getting the New button to crate an ACL as shown below:

Hope this helps. Mark the answer as correct/helpful based on impact.

Regards,

Shloke

Hope this helps. Please mark the answer as correct/helpful based on impact.

Regards,
Shloke

Harsh Vardhan · ‎02-24-2017

You need security_admin role to create an ACL.

Check the below screenshot.

Thanks,

Harshvardhan

Harsh Vardhan · ‎02-22-2017

Hi Nandan,

If you want to restrict your table based on role then you need to check what roles he has. EG:- if he has itil role then mention this role in ur ACL.

On the record level of ACL , you can perform different type of operations.

coming back to your requirement.

simply give read access ACL to the particular role.

By the way while creating a table if you checked on "Create Access Control" then it will automatically create "READ" , "Write", "Delete" and "Create" ACLs.

You just edit the 'Read' ACL and assign ur roles there then it will work.

Thanks,

Harshvardhan

sifynm · ‎02-24-2017

Dear Mr. Harshvardhan,

I am trying to follow this URL: http://wiki.servicenow.com/index.php?title=Using_Access_Control_Rules#Creating_ACL_Rules&gsc.tab=0 for creating an access list on ServiceNow which is not working for me. Could you please let me know how to create a new one which would help?

Harsh Vardhan · ‎02-24-2017

Hi Nandan,

you can either create a seprate ACL as shloke04 suggested .

Or

Go to the table System Definition > Tables> search table "u_cmdb_ci_sify_server" .

Open the table and go to the Access Control related list. you will find 4 ACL there . just assign your role in read ACL.

Thanks,

Harshvardhan