ServiceNow Administration Lab 4.2.1

Mrityunjay
Tera Contributor


I have a question about this lab. We created an ACL to restrict access so that only users with the u_holographic_handheld_hhd_user role can access HHD incidents.

However, when I impersonate Bernard Laboy, who only has the ITIL role (and not the HHD role), he is still able to submit HHD incidents and view all of them.

Why is this happening? Shouldn't the ACL prevent this?

 

2 REPLIES 2

Vasantharajan N
Giga Sage
Giga Sage

@Mrityunjay - What type of ACL "Read" or  "Write" you created in the lab. In this case, I guess ACL is created to limit the view access to HHD incidents. Please check whether the itil user who submitted the HHD incident is able to view the HHD incident or not. 


Thanks & Regards,
Vasanth

Deepak Shaerma
Kilo Sage

@Mrityunjay 

Please check the other ACLs created for the same table, as ACLs works with OR conditions, some itil role based ACLs also there.

If my answer has helped with your question, please mark my answer as the accepted solution.

Regards
Deepak Sharma