Hi @Marshall Day1 ,
The simplest way to find all roles that can access a specific ServiceNow table is to review the table’s ACLs and their associated roles, typically by querying the relevant platform tables or using list views rather than relying solely on tools like Access Analyzer or manual review.
Practical Approaches
sys_security_acl_role Table:
Go to the list view for sys_security_acl_role (type sys_security_acl_role.list in filter navigator) and filter by the table name and desired operation (read, write, etc).
This view shows the roles tied to ACLs for your table, letting you quickly export and filter results (e.g., exclude field-level ACLs for a cleaner list).
sys_security_acl Table:
You can also directly use the sys_security_acl table to see ACL records and their required roles for a given table. Then cross-reference sys_security_acl_role to see which roles are mapped to these ACLs.
Scripted Query:
Advanced users can script a query joining ACL and role tables, returning unique roles for a table across all operations. This method is concise and can run in a Script Include or on background scripts
Please refer to the below link:-
- https://www.servicenow.com/community/sysadmin-forum/report-that-shows-roles-that-grant-access-to-a-t...
- https://www.servicenow.com/community/developer-forum/how-to-fetch-read-roles-of-tables/m-p/2724822
If it is helpful, please hit the thumbs button and accept the correct solution by referring to this solution in the future it will be helpful to them.
Thanks & Regards,
Mohammed Mustaq Shaik
Hi @Marshall Day1 ,
The simplest way to find all roles that can access a specific ServiceNow table is to review the table’s ACLs and their associated roles, typically by querying the relevant platform tables or using list views rather than relying solely on tools like Access Analyzer or manual review.
Practical Approaches
sys_security_acl_role Table:
Go to the list view for sys_security_acl_role (type sys_security_acl_role.list in filter navigator) and filter by the table name and desired operation (read, write, etc).
This view shows the roles tied to ACLs for your table, letting you quickly export and filter results (e.g., exclude field-level ACLs for a cleaner list).
sys_security_acl Table:
You can also directly use the sys_security_acl table to see ACL records and their required roles for a given table. Then cross-reference sys_security_acl_role to see which roles are mapped to these ACLs.
Scripted Query:
Advanced users can script a query joining ACL and role tables, returning unique roles for a table across all operations. This method is concise and can run in a Script Include or on background scripts
Please refer to the below link:-
- https://www.servicenow.com/community/sysadmin-forum/report-that-shows-roles-that-grant-access-to-a-t...
- https://www.servicenow.com/community/developer-forum/how-to-fetch-read-roles-of-tables/m-p/2724822
If it is helpful, please hit the thumbs button and accept the correct solution by referring to this solution in the future it will be helpful to them.
Thanks & Regards,
Mohammed Mustaq Shaik
