Restrict access to Email templates based on role and table

rafas_10 · ‎04-29-2025

Hi everyone,

I have an OOTB ACL for the 'sys_email_client_template' table. See below:

This is restricting based on the role. I want to keep this ACL but also create a new one to restrict users so they are not able to see records when the table is 'sn_hr_core_case'. If I duplicate this one and on applies to select table 'sn_hr_core_case' the records keep showing for regular users.

How can I prevent the display of every record from the 'sn_hr_core_case' table without deleting this ACL?

Goal is the following:

Users with 'email_client_template_read' role can see email templates for every table except the 'sn_hr_core_case'.

To view 'sn_hr_core_case' they need admin role.

But a user can have the admin role and the email_client_template_read. If that happens, I want it to follow the admin role ACL and not the email_client_template_read ACL.

Thanks in advance!

Ankur Bawiskar · ‎04-29-2025

@rafas_10

this is a duplicate thread. please avoid the same.

you already created a question for the same earlier and discussion is going on that thread.

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader

rafas_10 · ‎04-29-2025

@Ankur Bawiskar Indeed but I created in the wrong forum and I can't delete it. Therefore I created in the right forum.

Ankur Bawiskar · ‎04-29-2025

@rafas_10

admin will have email_client_template_read role

So you cannot restrict it using roles, you can use script and check explicit roles using gs.hasRole('admin') etc

1) so for "sn_hr_core_case" only admin role is required -> create a new table.None and give admin in roles

2) in the OOTB one, you should update the condition

please use access analyzer and debug which ACL is blocking

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader