Create data filtration rules

  • Release version: Zurich
  • Updated July 31, 2025
  • 1 minute to read

    • Learn how to create data filtration rules to grant your users' access to records are tables.

    Before you begin

    Role required: security_admin

    Note:
    To create or modify data filtration rules you, must elevate to the privileged role. For details on this process, see Elevate to a privileged role.

    Procedure

    1. Navigate to All > Data Filtration > Data Filtration Records.
    2. Click New in the Data Filtration list.
      A new data filtration form displays.
    3. In the form, fill in the fields as needed.
      Table 1. Data filtration form
      Field Description
      Table Table to which this data filtration rule applies.
      Note:
      Non-maint users cannot create data filtration on some tables, to work-around this remove the tableChoicesScript=DataFiltrationTableList attribute, but make sure that no filters will be created on any of the sys_df_xxx tables or any tables in the sys_df_table_exclusion.
      Active Sets the data filtration rule as active.
      Note:
      Keep data filtration rules inactive until you are ready to test to avoid unintentionally locking users out of records.
      Description Description of the data filtration rule.
      Cascading

      Select to set the data filtration rule to apply to extended tables.

      For example, you select the Task[task] table, and enable cascading. In this case, the data filtration rule also applies to all tables extended from task, such as Incident[incident] and Change Request[change_request]. For detail on table extension, see Table extension and classes

      Note:
      This field is enabled by default.
    4. Optional: To narrow the scope of the rule fill in the Conditions fields as needed.
      Field Description
      Subject Condition All conditions must be met for access.
      Security Attribute Condition All conditions must be met for access.
      Local
      The attribute is defined only in the scope of the data filtration rule.
      Existing
      The attribute is defined by reference to an already existing Security Attribute
      Data condition Defines the conditions for data to be subject to the rule.
      Note:
      An empty Data Condition will apply to all records in the selected table.
    5. Select Save from the form menu.
      After you have saved your data filtration rule, this rule automatically applies to all records on the selected table, unless specified otherwise by the data condition.