What are best practices of Access Control List(ACL)?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-09-2020 01:57 AM
What are the best practices Access Control List(ACL)?
What is the difference between * and 'none'?
When do we go to the "table.none" ACLs?
does "table.none" acl is having any relationship with table.* acl
Anyone has an in-depth youtube video link that contains a detailed description with a high level.
what are the general questions and answers will ask in the interview purpose on ACLs?
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-09-2020 03:53 AM
Hi Shantharao,
Please refer to the below article about ACLs. It's very detailed!!
https://community.servicenow.com/community?id=community_article&sys_id=ac67a4ccdb36e300f0612183ca961906
Please mark as correct/helpful, it will be useful to others aswell!!!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-09-2020 10:04 AM
Hey Shantharao,
ACL is Access Control List. Though ACL we restrict user form Accessing various Tables and Fields of a table.
In ACL there are various kind of Operations:
- Execute (To give access to user to execute the table)
- Read (To give access to user to read the table only)
- Write (To give access to user to edit the table)
- Delete (To give access to user to Delete the table records)
and many more...
Difference between * and None:
* means giving access to all the fields of table. Eg: Read operation on Incident . * means all the fields of Incident form will be read only.
None means giving table level access. Eg: Read operation on Incident . None means User will only be able to see the table but no Fields of the table. We should 1st give table level access and then give other Access like Incident . * or Incident . Short description, etc.
Also ACL runs on and condition means if user has specified any ROLE or CONDITION or SCRIPT in an ACL then when all 3 condition will satisfy then only ACL will run if any of the above goes false then the ACL will not run.
If we only specify a ROLE. CONDITION or SCRIPT is blank or not specified then the ACL will only check for ROLE. When it becomes true the ACL will run.
If I was able to resolve your query then please mark my answer Helpful and Correct.
Thanks and Regards:
Utpal Dutta
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-10-2020 12:38 AM
Hey Shantharao,
If i was able to resolve your query then please mark my answer Correct and Helpful.
Thanks & Regards:
Utpal Dutta
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-17-2020 10:11 PM
Hi Dutta,
Thank you so much for quick response, I have a doubt as below
We are giving the "ABC" role to the "incident.none" read ACL
&&
We are giving "XYZ" role to "incident.*" in this scenario, what will happen
which role users can access the incident table list view or form view
Thanks
