Creating user group with restricted access to Incidents

Sarva · ‎01-05-2023

I need to create a group of users with restricted access to Incidents. These users should be able to see only tickets assigned to their groups and not able to see any other incidents created in SN.

I tried to replicate the following in Test environment, but its not working.

1. Create 4 test users

2. Added these test users to a group.

3. Created a Business Rule (See below image) on Incident table.

I'm trying to simulate it, but for some reason these test users are able to see other incidents also.

Can someone please help me on this and also point out what's missing or what step am I doing wrong. Thanks!

Mike_R · ‎01-05-2023

This should work

Condition: gs.getUser().isMemberOf("YourGroupNameHere")

Script:

(function executeRule(current, previous /*null when async*/ ) {

current.addEncodedQuery('assignment_groupDYNAMICd6435e965f510100a9ad2572f2b47744');

})(current, previous);

Mike
* My Collection of ServiceNow Stuff *

View solution in original post

Mike_R · ‎01-05-2023

This should work

Condition: gs.getUser().isMemberOf("YourGroupNameHere")

Script:

(function executeRule(current, previous /*null when async*/ ) {

current.addEncodedQuery('assignment_groupDYNAMICd6435e965f510100a9ad2572f2b47744');

})(current, previous);

Mike
* My Collection of ServiceNow Stuff *

Txilos · ‎06-15-2023

Hi, Mike.

I am currently looking in to this exact functionality, but when impersonating a group member I still can see all the incidents.

I have assigned to the group the sn_incident_write role.

Any suggestions on what I'm doing wrong? Thank you 🙂

Sarva · ‎01-06-2023

Thank you so much @Mike_R , it worked 🙂