ACL on task and incident

Srvs
Kilo Guru

‎07-30-2017 11:18 PM

Hi All

i have query on incident table.

i want to access records in incident table, so that i have created a ACL on incident table,

but i dont have read permission in task table, is it possible to access incident table?

is incident table ACL works on independently to task table??

or can i acquire read permission on task table also ?

please advise me..

Regards

venky

0 Helpfuls
  • 3,234 Views
5 REPLIES 5

Shishir Srivast
Mega Sage

‎07-30-2017 11:25 PM

ACL on incident table will be applicable on incident table. To read the record from incident table you need to create read access on incident table. I believe if you have read ACL on task table then that would be applicable on incident   table too but not   the vice-versa.


0 Helpfuls

Srvs
Kilo Guru
In response to Shishir Srivast

‎07-30-2017 11:30 PM

Hi shishir,



if i have read access on incident table, and not in task table, is it fine for accessing incident records???


0 Helpfuls

Shishir Srivast
Mega Sage
In response to Srvs

‎07-30-2017 11:38 PM

Yes, I believe as long as you have an ACL on specific table it should not prevent you to play with data based upon the provided ACL. There are certain Rule it does follow to present the data if access is there else it will deny,



Please check this for more info: http://wiki.servicenow.com/index.php?title=Using_Access_Control_Rules#Processing_Order_for_Record_AC...


0 Helpfuls

Karthik Reddy T
Kilo Sage

‎07-30-2017 11:28 PM

Hello Venky,



In most cases there is not an individual field ACL rule for every field in the table the users is trying to access.


If no field ACL rule matches the record object, the user must pass the table ACL rule. Since the base system includes wildcard table ACL rules that match every table, the user must always pass at least one table ACL rule. The base system provides additional table ACL rules to control access to specific tables.


Table ACL rules are processed in the following order:


  1. Match the table name. For example, incident.
  2. Match the parent table name. For example, task.
  3. Match any table name (wildcard). For example, *.

Just like with field ACL rules, the system grants the user access to the record object secured by the ACL rule and stops searching for matching ACL rules the first time a user passes a table ACL rule's permissions. A user who passes the table ACL rule for incident has access to all fields in the Incident table. A user who passes the table ACL rule for task has access to all fields in the Task table as well as the fields in extended tables. A user who passes the table ACL rule for any table has access to all fields in all tables.



Access control rules


Karthik Reddy T.
ServiceNow Commnunity MVP -2018 class.
0 Helpfuls