Skip to page contentSkip to chat
ServiceNow support
    • Community
      Ask questions, give advice, and connect with fellow ServiceNow professionals.
      Developer
      Build, test, and deploy applications
      Documentation
      Find detailed information about ServiceNow products, apps, features, and releases.
      Impact
      Accelerate ROI and amplify your expertise.
      Learning
      Build skills with instructor-led and online training.
      Partner
      Grow your business with promotions, news, and marketing tools
      ServiceNow
      Learn about ServiceNow products & solutions.
      Store
      Download certified apps and integrations that complement ServiceNow.
      Support
      Manage your instances, access self-help, and get technical support.
How to determine if a user has permissions to create, read, and write on an extended table - Support and Troubleshooting
  • >
  • Knowledge Base
  • >
  • Support and Troubleshooting (Knowledge Base)
  • >
  • How to determine if a user has permissions to create, read, and write on an extended table
KB0523743

How to determine if a user has permissions to create, read, and write on an extended table


48023 Views Last updated : Aug 24, 2022 public Copy Permalink English (Original)
  • English (Original)
  • Japanese
KB Summary by Now Assist

Issue

ServiceNow uses access control list (ACL) rules, also called access control rules, to control what data users can access and how they can access it. ACL rules allow users to update records using API protocols such as web services. If a user does not have the necessary permissions to create, read, or write on an extended table, this can pevent the New or Edit buttons from appearing on a related list or unexpected results. 

Procedure

To find out if the issue is caused by write or create access, turn on Security debugging for this session. The Debug Security Rules module places a debug icon on each field of a form. Point to the icon to see if there are any debug messages for the associated element. Click the icon to expand details about read and write access. The Debug Security Rules module is very helpful when you are using ACLs to control access to records and fields.

 Note:
  • To create or edit ACL rules, you must elevate privileges to the security_admin role.
  • Impersonation can simplify debugging ACL rules. First enable ACL debugging, then impersonate another user to see what ACL rules the user passes and fails.

To verify ACL rules are not preventing the New and Edit button from appearing on a related list:

  1. Navigate to System Security > Debug Security Rules to enable ACL rule debugging.
  2. Reproduce the issue as the affected user.
  3. Scroll down to the bottom of the form to view the ACL rule output messages. 

The output message lists the ACL rule name, the permissions required, and the evaluation result (pass or fail).

  1. Review the Debug Output and search the table name and find the security rule output. 

    In this example, we are investigating the [task_sla] table, so search for the term "task_sla." We find a number of red text security debug output that indicates the rule failed. Therefore, the user does not have the permissions to create, write, or delete records in the selected table.

    Debug Security Rules Output  

 Note: To change write access to a field or table, refer to Using Access Control Rules and Contextual Security in the product documentation.

The world works with ServiceNow.

Sign in for more! There's more content available only to authenticated users Sign in for more!
Did this KB article help you?
Did this KB article help you?

How would you rate your Now Support digital experience?

*

Very unsatisfied

Unsatisfied

Neutral

Satisfied

Very satisfied

Very unsatisfied

Unsatisfied

Neutral

Satisfied

Very satisfied

What can we improve? Please select all that apply.

What are we doing well? Please select all that apply.

Tell us more

*

Do you expect a response from this feedback?

  • Terms and conditions
  • Privacy statement
  • GDPR
  • Cookie policy
  • © 2025 ServiceNow. All rights reserved.