/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PublicSymptom
Is it possible to prevent the import of unsecured content?
"Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental."
Environment
SAP SuccessFactors HCM Suite
Resolution
-
The Security Scan of User Inputs option only works in Employee Central-enabled instances. Employee Import files can also be scanned. For example, fields containing cross-site scripting are detected, skipped, and reported in the import status email.
-
You can now better prevent the import of unsecured content with Employee Import.
-
This applies to basic and extended user import.
- When the "Security Scan of User Inputs" option is enabled, and fields containing unsecured scripts, such as cross-site scripting, are detected, the import ignores the fields send report via import status email.
To Enable:
- Go to Admin Center > Application Security Feature Settings.
- On the Security Toggles tab, select Security Scan of User Inputs.
- Save your change.
See Also
Keywords
security scan, enable, basic import, employee import, user inputs, unsecure scripts, import. unsecured data , KBA , LOD-SF-PLT-UIM , Employee Import Issues , Product Enhancement
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)