/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PublicSymptom
- Logged-in users can fetch information from "other" organizations from calendar view.
- Logged-in users can fetch user information from "other" organizations from profile view.
Environment
- SAP Analytics Cloud (enterprise)
Reproducing the Issue
- Conduct a security audit on SAC APIs.
- Observe that logged-in users can fetch user information from other organizations from both calendar and profile views.
Cause
- The role has "READ" privilege for "USER", allowing the user to read all users in the tenant via the API. This is by design.
- SAC is a collaborative product, designed to allow users to discover other users in their list, similar to a corporate email server.
- The reported ability to retrieve information is only possible for users who are members of the same organization.
Resolution
- SAC is designed to allow users to read all users in the tenant via the API.
- In case the current by design behaviour raises concerns it is possible to raise an enhancement request,on how to raise the request please feel free to refer to KBA - 2424376 - How do you create an enhancement request and provide feedback for SAP Analytics Cloud? - SAP for Me
Please note that this kind of product enhancement request is discussed by the complete SAP Analytics Cloud product management team and requests that receive more votes from the community are prioritized.
See Also
- 3069559 - Support User Frequently Asked Questions (FAQs) in SAP Analytics Cloud (SAC) & SAP Digital Boardroom
- 2569847 - Where can you find SAC user assistance (help) to use, configure, and operate it more effectively?
- Have a question? Ask it here and let our amazing SAP community help! Or reply and share your knowledge!
- 2487011 - What information do I need to provide when opening an case for SAP Analytics Cloud?
- 2511489 - Troubleshooting performance issues in SAP Analytics Cloud
- Search for SAP Analytics Cloud content using your favorite search engine (such as SAP for Me, Google or Bing):
- https://me.sap.com/servicessupport/search#?q=SAP%20Analytics%20Cloud%20OR%20SAC&tab=All
- https://www.google.com/search?q=site%3Ahttps%3A%2F%2Fuserapps.support.sap.com+SAP+Analytics+Cloud
- https://www.bing.com/search?q=site%3Ahttps%3A%2F%2Fuserapps.support.sap.com+SAP+Analytics+Cloud
- Note: Add relevant text or warning/error messages to the text search field to filter results.
- SAP Analytics Cloud Connection Guide
- Getting Started with SAP Analytics Cloud Expert Community page
- SAP Analytics Cloud Get More Help and SAP Support
- Need More Help? Contact Support or visit the solution finder today!
Your feedback is important to help us improve our knowledge base.
Keywords
SAP Analytics Cloud, SAC, API, security audit, vulnerability, user information, calendar view, profile view, tenant, READ privilege. , KBA , LOD-ANA-ADM , SAC Administration , Problem
Product
SAP Analytics Cloud all versions
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)