Insufficient Rights Error when Integrating with ServiceNow Using REST Table APIIssue <!-- /*NS Branding Styles*/ --> .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #00718f; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } Customer is attempting to set up an integration with ServiceNow using the REST Table API. The integration uses OAuth for user authentication, with the auth scope set to useraccount, meaning it operates under the same permissions as the user. For example, on the sys_choice table, a user should be able to query fields and retrieve field values in this way: curl "https://INSTANCENAME.service-now.com/api/now/table/sys_choice?sysparm_query=name=incident^inactive=false&sysparm_exclude_reference_link=True&sysparm_fields=label,value&sysparm_limit=10" \--request GET \--header "Accept:application/json" \--user 'userID':'password' The only fields they should need read access to are the ones the query returns, in this case "label" and "value" but not "inactive" and "name". However, the app is encountering the following error: { "error": { "message": "Insufficient rights to query records", "detail": "Field(s) present in the query do not have permission to be read" }, "status": "failure" } This issue occurs when making an external API call, even though it works as expected on the platform.Release<!-- /*NS Branding Styles*/ --> .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #00718f; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } AllCause<!-- /*NS Branding Styles*/ --> .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #00718f; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } This is Expected Behavior. There is a property that controls field level ACLs check for Query Condition.Property : glide.export.query.enforce_field_aclDescription : Enforces field ACLs for query conditions on the following data export services.Table APISoap getRecordsFile Exports: CSV, XML, EXCEL/XLS, XLSX, JSONv2Documentation : https://www.servicenow.com/docs/bundle/yokohama-platform-security/page/administer/security-center/reference/sc-enforce-field-acls-for-inbound-query-requests.htmlDefault and recommended value of this property is True.Resolution<!-- /*NS Branding Styles*/ --> .ns-kb-css-body-editor-container { p { font-size: 12pt; font-family: Lato; color: #000000; } span { font-size: 12pt; font-family: Lato; color: #000000; } h2 { font-size: 24pt; font-family: Lato; color: black; } h3 { font-size: 18pt; font-family: Lato; color: black; } h4 { font-size: 14pt; font-family: Lato; color: black; } a { font-size: 12pt; font-family: Lato; color: #00718F; } a:hover { font-size: 12pt; color: #024F69; } a:target { font-size: 12pt; color: #032D42; } a:visited { font-size: 12pt; color: #00718f; } ul { font-size: 12pt; font-family: Lato; } li { font-size: 12pt; font-family: Lato; } img { display: block; max-width: ; width: auto; height: auto; } } Set the system property glide.export.query.enforce_field_acl to 'false' When this property is set to true, the system enforces ACLs on queried fields during an external API call, requiring explicit read access to those fields. If set to false, users can query and see data for fields they have read access to, as long as they match the query_match ACL.