We're reclaiming inactive PDIs to keep them available for active builders. Learn what's changing, who's affected, and how to protect your work. Read More

Field ACL (write) not working as expected in custom table

GyanaRanjaM
Tera Contributor

Hi All,

I am trying to restrict write access to a specific field using ACL, but it is not working as expected.

Requirement:
Only users with the ITIL role should be able to edit the Department field in a custom table (Test SNOW). All other users should have read-only access to this field.

So what will be approach to this requirement.I want to use only ACL.

 

Any guidance or suggestions would be really helpful.

Thanks in advance!

1 REPLY 1

Naveen20
ServiceNow Employee
A single field-level write ACL on that one field should do — leave the existing table-level write ACL alone so non-ITIL users can still edit other fields.

as security_admin 

 

1.  ACL > New
2. Type: record, Operation: write
3. Name: u_test_snow . u_department (use the actual table/column names from sys_db_object and sys_dictionary — replace if different)
4. Required Roles: itil

 

ACLs are evaluated table-first, then field. Non-ITIL users pass the table-level write ACL (form stays editable) but fail this field-level write ACL, so only the Department field becomes read-only for them. Read access is unaffected.