Symptom
- Change Audit feature allows you to generate reports tracking changes to personal data in your instance;
- This article provides information on how to grant permissions for users to enable and generate Change Audit report;
** Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental **
Environment
SAP SuccessFactors HXM Suite
Resolution
Prerequisites In Provisioning (only SAP or Partners have access)
- Role-Based Permissions (RBP) enabled;
- Enable Generic Objects - Metadata Framework (MDF) enabled.
Required Permissions
- View Read and Change Audit Configuration;
- Edit Read and Change Audit Configuration;
- Generate Change Audit Reports;
Grating Permissions
- Go to Admin Center > Manage Permission Roles;
- Select the desired permission role;
- Click "Permission..." button;
- Under "Administrator Permission" section, access "Admin Center Permissions";
- Select the permissions "View Read and Change Audit Configuration", "Edit Read and Change Audit Configuration" and "Generate Change Audit Reports":
- Click "Done" > "Save Changes".
Procedure to Enable
- If you would like to use Create Configuration Data Report or Create Business Data Report, please, enable General Audit option as well;
Now , Audit feature is enabled for page access, data export, and proxy sessions using the new tool Manage General Audit in Admin Center. By default, auditing for data export and proxy sessions are enabled and auditing for page access is disabled.
RBP Prerequisites to access the tool :
- User should have administrator -> Admin Center Permissions -> Manage General Audit Configuration.
- You need the View permission to access Manage General Audit and Edit permission to change default configurations
NOTE: For now, customers can't create or download reports of general audit yet.
IMPORTANT:
- There are some limitations in the feature, for more details, please visit important notes about change audit and see FAQ on referenced KBA here.
- Change audit on LoginMethod field is not supported, for this raise a case with Support (Support Engineer please review internal memo)
- Changes made before the feature is enabled will not be captured. Change Audit Report will only display the logs for changes performed from the point the tool was enabled onwards. Change logs from before the feature's enablement will not be auditable.
FAQ - Additional Information
Q) Where can I get information on this from the Guide?
A) Guide: Change Audit Admin Guide
Chapter: Feature Settings Audit Report or Creating a Change Audit Report
See Also
- 2618848 - Enabling Change Audit Feature
- 2771768 - Feature Settings Audit Report - How to Audit on Provisioning
- 2491304 - Type of Audit Reports
- 2520999 - Report Center - View Schedules (Report & Jobs Scheduled)
- 2354921 - What are the Required User permissions for Report Center? - RBP
- 2639894 - [1805 Feature] API Audit Log Availability
- 2744431 - How to Create Change Audit Reports and What Reports are Available - SuccessFactors
Keywords
Change Audit, Enable, Permissions, RBP, report, changes mane to user, changes made by user, user activities, audit , KBA , LOD-SF-PLT , Platform Foundational Capabilities , LOD-SF-EC , Employee Central , LOD-SF-PLT-AUDR , Request Audit Report (Not Change Audit) , LOD-SF-PLT-AUDE , Enable Audit Framework , How To