2720480 - Does Manage Workflow Requests Respect Permissions?

• HR users with access to Manage Workflow Requests can view the workflows of users they do not have access.
• Explain role base permission Manage Workflow Requests

"Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental.“

• SAP SuccessFactors Employee Central - Workflow & Trigger (Rules & XML)

1. Navigate to Manage Workflow Requests as an HR user that can only see users from their department
2. You can view workflows for users you do not have permission to view

• Manage Workflow Requests is considered an Admin page. If you have access to Manage Workflow Requests, you will have access to view all workflows.
• There is also no way to restrict the actions a user can carry out on the visible workflows.

Please Note: 
There is a Platform Feature for Workflow Data Blocking. This restricts access to view workflows that have the status Approved, Rejected, or Canceled.
Please review the following KBA for detailed information on this feature:
2616208 - Workflows: How to enable the "View Completed Workflows" permission in Role-Based Permissions (Data Blocking)

FAQ - Additional Information

Q) Where can I get Guide?

A) Guide - Implementing and Managing Workflows  Chapter-  Managing Workflow Requests as Admin Chapter- Enabling the Professional Edition of Manage Workflow Requests

Q) Explain There is ‘†’ after ‘Manage Workflow Requests’. This symbol means ‘Target needs to be defined’ ?

A) Please see below

‘Manage Workflow Requests’ page permission is controlled by RBP. All related setting is in ‘Manage Permission Roles’.

1. In ‘Manage Permission Roles’, check whether user has ‘Manage Workflow Requests’ permission.

There is ‘†’ after ‘Manage Workflow Requests’. This symbol means ‘Target needs to be defined’.

At the bottom of specific permission role in ‘Manage Permission Roles’, it has column ‘Target population’ which can be set by ‘Edit Granting’ of ‘Action’.

Click ‘Edit Granting’, we can see the ‘Target population’ can be ‘Everyone’ or other two types.

Type1, e.g. same department with the user

Type2, e.g. permission group

Type 1 and type 2 can both checked for effect.

The ‘Permission Groups or Users’ can only see workflows which subject user in the selected person in related ‘Target population’ in ‘Manage Workflow Requests’ page. If the subject user is not in the scope of related ‘Target population’, user will see below message.

• 2473566 - Manage Workflow Requests: Professional Edition
• 3249314 - After Upgrading to the Latest homepage, Permission for "Professional Edition Manage Workflow Requests" is not showing in Manage Workflows
• 2440382 - Request Type values are missing in Manage Workflow Requests
• 2492592 - Filters in the My Workflow Requests Page Shows no Data
• 2646054 - Role-Based Permissions take preference over field level visibility
• 2080722 - How to manage & modify a Workflow that is in progress - Employee Central 
• 2412557 - Workflow does not respect permissions
• 2487801 - Job Code is visible in My Workflow request page even though no RBP permission is provided
• 2080181 - Respect Permission Functionality in Workflow Configurations - EC
• 2720480 - Does Manage Workflow Requests Respect Permissions?
• 2616208 - Workflows: How to enable the "View Completed Workflows" permission in Role-Based Permissions (Data Blocking)

manage workflow requests, request, permission, respect, respect permission, workflow, View Completed Workflows, ECT-105783, ECT-83139, RBP permission , KBA , LOD-SF-EC-WFL , Workflows - Configuration, Tools, Objects & Rules , LOD-SF-EC-RBP , Roles & Permissions (EC Core only) , Problem