Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.

Restricted caller access privilege settings

Log in to subscribe to topics and get notified when content changes.

Restricted caller access privilege settings

Use restricted caller access privilege settings to define cross-scope access to an application, application resource (for example, access control role, business rule, UI action, script include), event, or to allow or deny requests for access. Restricted caller access [sys_restricted_caller_access] records track cross-scope applications or scripts that request access to an application, application resource, or event.

The system creates sys_restricted_caller_access records when one of these actions occur:

  • Caller access is set to Caller Restriction or Caller Tracking.
  • A cross-scope script attempts to access an application resource or event.

Using these records, you can do these tasks:

  • Track cross-scope requests for access to an application resource.
  • Approve or deny any cross-scope requests for access to application resources or events. For example, you can create a Restricted Caller Access record to allow access for all scope-to-scope requests.

Restricted caller access privilege setting combinations

You can define various combinations of restricted caller access privilege settings and specify whether access is allowed or restricted for each relationship. You can define various combinations of:
Scope
All application resources in a selected source or target scope. To learn more about application scopes, see Application scope
Source
A specific application resource in a selected source scope.
Target
A specific application resource in a selected target scope.
These restricted caller access privilege settings combinations include, but are not limited to:
  • Scope-to-Scope
  • Scope-to-Target
  • Source-to-Scope
  • Source-to-Target
Note: For detailed information about these access setting combinations, and how to create each, see Set application scope, application resource, and event access.

Activating application restricted caller access

You can activate application restricted caller access through one of the following methods:

  • Activate the Scoped Application Restricted Caller Access plugin (com.glide.scope.access.restricted_caller).
  • Request the HR Service Delivery or Security Incident Response applications. By default, restricted caller access is active in these applications.
Feedback