How can I have “read Only” security for a process? The requirement is a group of

You can configure the security for the related action process model for the user group so that that particular related action would be hidden from all users in the group.

Abhimanyu, What I was referring to was hiding action under Actions menu (not related actions).

Thanks

For the process model corresponding to the action that you want to hide, you can configure the security privileges for the group in the same way (set privilege for the group to Deny).

If I set the group to deny in the process model security then, the user will get an error when he opens the corresponding process backed record saying that he does not have access to the data. I want the user to view the records based on that process model

The security for process instances is inherited from the process model by default, so restricting access to the process model also restricts access to all the instances, which could be why you are unable to view the process backed records.

If you have a small number of existing instances, you can modify the security of these manually in the processes tab of designer. Alternately, you may also modify the process security in bulk.

What version of Appian do you have?

We are on 7.5.
I just tried what you suggested.. Created one instance, changed the security of the instance and gave access to the group and still got the same error "The source of the data for “Temp Record Test” cannot be accessed. (APNX-1-4205-001)".

Thanks for your help so far

As an added note, you can add the "Modify Process Security" node to your process model and set the process security explicitly for the group which takes effect for subsequent executions of the process model. This node can be found in Appian Smart Services > Process Management

It seems that privileges would be required for the process model to view the record type. In that case, you could try this workaround -

1. Create a new process model (model A) with a subprocess node, which would point to the existing process model (model B) whose action is displayed. Save and publish both models.
2. For the action in the application, change the process model to model A
3. For model B, the user group will need to have viewer or higher privileges to view the record type. For model A, the user group must not be listed in security settings.

Following the changes above, note that the action is no longer visible, but the record type and records are still shown.

Hope this helps.

This sounds promising. Will try this approach. Thanks for your help