Why cant I edit the ACL i created for my AI agent

banditapani
Tera Contributor

22 hours ago

HI, 

 

I created an AI agent and defined the ACL under section "Define who can access this AI agent" . I created that ACL as "admin" . However , i cannot edit that anymore to change the role.  I have tried elevating the role and i am also the admin of the instance. 

 

Release - Yokohama P7

 

Can someone help urgently ?

 

Thanks 

0 Helpfuls
  • 117 Views
3 REPLIES 3

Roshnee Dash
Kilo Sage

21 hours ago

@banditapani 

May be this

Why You Can’t Edit the ACL

In the Yokohama release, the “Define who can access this AI agent” section creates an ACL that is tightly linked to the agent configuration. Once saved, the role assignment becomes immutable through the UI for security reasons.
Even if you elevate your role or are an instance admin, this restriction is enforced to prevent accidental privilege escalation.

 

How to Change the Role

You have two options:

1. Update via ACL Table (This one will work or not not sure but you  can try)

  • Navigate to System Security → Access Control (ACL).
  • Locate the ACL record associated with your AI agent.
  • Modify the Role field directly in the ACL record.
  • Save your changes and clear the cache if necessary.

2. Delete and Recreate

  • If the ACL is locked or the Role field is read-only, delete the ACL.
  • Recreate it with the correct role.
  • After deletion, return to the AI agent configuration and define the new access role.
Your feedback makes the community stronger! If you found this helpful, marking it as the correct answer helps others.
Stay awesome,
Roshnee Dash
0 Helpfuls

GlideFather
Tera Patron

20 hours ago

Hi @banditapani,

 

according to Define security controls for an AI agent, it requires sn_aia.admin role.

 

Can you review that you have that role? Eventually check if you are in the correct scope to make any modifications..

_____
No AI was used in the writing of this post. Pure #GlideFather only
0 Helpfuls

Vijaysighav
Tera Contributor

20 hours ago

Once an AI Agent is created and an Access Control (ACL) is set in the “Define who can access this AI agent” section:

That access definition becomes immutable (locked)
It cannot be edited later, even by:

admin

security_admin

elevated roles

instance admins

This is by design, not a bug.

You can Clone or Recreate the AI Agent
and Set the correct role(s) under Define who can access this AI agent

0 Helpfuls