Domain separation
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-27-2024 05:09 AM
Hi Friends,
I have one scenario , can anyone help me with this:
I have created 2 identities in the identity table (which is custom table) which is similar to incident table and 2 users in the users table with itil roles and admin roles in 2 different domains(ABC and XYZ) and i have linked the users using servicenow id field(custom field) in identity table , i impersonated as one of the users, I should not be able to see the details of the other user in the identity table.Will it work or it can be done in domain separation?
Thanks,
Harsha R
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-01-2024 04:35 AM
It can be done by just using ACLs.
ACLs can be used to enforce security rules based on conditions such as user roles, user membership in specific groups, or even specific field values within records. When combined with Domain Separation, ACLs provide a robust framework for ensuring that users only have access to the appropriate data based on their domain and role.
I would recommend you to create a ACL that only allows users to see their own record.