2618848 - Enabling Change Audit Feature

• Change Audit feature allows you to generate reports tracking changes to personal data in your instance;
• This article provides information on how to grant permissions for users to enable and generate Change Audit report;

** Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental **

SAP SuccessFactors HXM Suite

Prerequisites In Provisioning (only SAP or Partners have access)

• Role-Based Permissions (RBP) enabled;
• Enable Generic Objects - Metadata Framework (MDF) enabled.

Required Permissions

• View Read and Change Audit Configuration;
• Edit Read and Change Audit Configuration;
• Generate Change Audit Reports; 

Grating Permissions

1. Go to Admin Center > Manage Permission Roles;
2. Select the desired permission role;
3. Click "Permission..." button;
4. Under "Administrator Permission" section, access "Admin Center Permissions";
5. Select the permissions "View Read and Change Audit Configuration", "Edit Read and Change Audit Configuration" and "Generate Change Audit Reports":

6. Click "Done" > "Save Changes".

Procedure to Enable

1. In the Admin Center, go to Manage Audit Configuration.
2. On the Change Audit tab, switch on the Change Audit option, and click Save. [Note: You get a message telling you that the activation process has started. This usually takes about 24 hours]
3. Once that time period has passed, come back to Manage Audit Configuration. You’ll see the flag is now enabled, meaning that Change Audit is now active in your SAP SuccessFactors system.

4. If you would like to use Create Configuration Data Report or Create Business Data Report, please, enable General Audit option as well;

Now , Audit feature is enabled for page access, data export, and proxy sessions using the new tool Manage General Audit in Admin Center. By default, auditing for data export and proxy sessions are enabled and auditing for page access is disabled.

RBP Prerequisites to access the tool :

• User should have administrator -> Admin Center Permissions -> Manage General Audit Configuration.
• You need the View permission to access Manage General Audit and  Edit permission to change default configurations

NOTE: For now, customers can't create or download reports of general audit yet.

IMPORTANT:

• There are some limitations in the feature, for more details,  please visit important notes about change audit and see FAQ on referenced KBA here.
• Change audit on LoginMethod field is not supported, for this raise a case with Support (Support Engineer please review internal memo)
• Changes made before the feature is enabled will not be captured. Change Audit Report will only display the logs for changes performed from the point the tool was enabled onwards. Change logs from before the feature's enablement will not be auditable.

FAQ - Additional Information

Q) Where can I get information on this from the Guide?

A) Guide: Change Audit Admin Guide

Chapter: Feature Settings Audit Report or Creating a Change Audit Report

• 2618848 - Enabling Change Audit Feature
• 2771768 - Feature Settings Audit Report - How to Audit on Provisioning
• 2491304 - Type of Audit Reports
• 2520999 - Report Center - View Schedules (Report & Jobs Scheduled)
• 2354921 - What are the Required User permissions for Report Center? - RBP
• 2639894 - [1805 Feature] API Audit Log Availability
• 2744431 - How to Create Change Audit Reports and What Reports are Available - SuccessFactors

Change Audit, Enable, Permissions, RBP, report, changes mane to user, changes made by user, user activities, audit , KBA , LOD-SF-PLT , Platform Foundational Capabilities , LOD-SF-EC , Employee Central , LOD-SF-PLT-AUDR , Request Audit Report (Not Change Audit) , LOD-SF-PLT-AUDE , Enable Audit Framework , How To