ACL inactive = access?

Henrik Jutterst
Tera Guru

‎11-08-2017 11:55 PM

I just want to confirm something...

I want to restrict users from deleting Configuration Items in CMDB and the screenshot below is from ACL on cmdb_ci table.

If I deactivate this rule, does that mean that all users can delete CI's or that no one can delete a CI since there is no ACL for deleting?

find_real_file.png

Preview file
97 KB
0 Helpfuls
  • 1,643 Views
6 REPLIES 6

Simon Christens
Kilo Sage
In response to Henrik Jutterst

‎11-09-2017 01:26 AM

If high security is Deny its the other way around:



  • Deny Access: The wildcard table ACL rules restrict the read, write, create, and delete operations on all tables unless the user has the admin role or meets the requirements of another table ACL rule. Other operations, such as report_on and personalize_choices, are unaffected by this setting.
  • Allow Access: The wildcard table ACL rules allow the read, write, create, and delete operations on all tables unless there are specific table ACL rules in place to restrict such operations.

Henrik Jutterst
Tera Guru
In response to Simon Christens

‎11-09-2017 01:40 AM

Thanks for clearing this out to me! Have a good day!


0 Helpfuls