Can we limit access/view of incident to group members only?

Gerry Crumbley · ‎06-29-2017

How can I limit access and viewing of incidents to only those assignment groups in which the ITIL user is a member of?

We want to stop people in Data Management group from seeing/altering incidents in the Wireless group, etc.

If I am in Assignment Groups: VIP Support; Technical Services; and User Support, then I should only be able to see or have access to incidents in those groups. I should not be able to see incidents in Wireless or Data Management.

Is this possible?

Chuck Tomasi · ‎06-29-2017

Hi Gerry,

This would be done via ACLs. Grant read permission to someone if the assignment group is one of their groups in the condition builder.

Docs: Access control rules

Docs: Contextual security

Security Best Practices - ServiceNow Wiki

Gerry Crumbley · ‎06-29-2017

Can you please pretend you are talking to a 3rd grader . . . . I have never gotten into SN this much and it's all greek to me.

In my Access Control (ACL) I have 6331 items. Which one do I alter, or do I start a new one?

Chuck Tomasi · ‎06-29-2017

Sorry for the confusion Gerry.

The number by the condition field simply says how many records are affected by your filter.

If you define a new filter, such as the one I showed above, click the yellow arrows next to that blue text and it will refresh the count.

Gerry Crumbley · ‎06-29-2017

the 6331 is what is showing in MY ACL.

So, you're saying I need to create a new ACL?

Where do I do that? there is no "new" option . .