Symptom
- Employee has access to edit their own payment information when it only should edit others.
- Employee can change currency and customized pay type fields.
Environment
- SAP SuccessFactors HCM Suite
- SAP SuccessFactors Employee Central
Reproducing the Issue
- Proxy as a sample employee
- Permission role for this employee has their country employees as target population, but permission has excluded granted employee from target population.
- Try to Edit Payment Information
- See that you can change Currency and Customized Pay Type
Cause
- This is currently not possible for payment information, field level override cannot be restricted accordingly with complex target population for other objects - this kind of restriction along with field level override will only work with position as Position Object has additional options of field criteria which is based on hierarchy levels.
- Payment information is user based object hence field criteria will be limited and system will look if user has permission to see field or not on field level. If user has access to field granted by other permission role than this will win over the self restriction.
Resolution
This is the expected behavior of the system at the moment.
You can open an enhancement request if this kind of permission control is needed for your company by following KBA 2090228 - How to submit enhancement ideas for SAP SuccessFactors Products.
See Also
Refer to SAP KBA: SAP Note 2676968 - Position restriction on Self not Working
Keywords
role restriction, payment information, edit own data, currency, customized pay type, permission settings, SAP SuccessFactors Employee Central, security, role based permissions, field overwrite, object permission, field level, permission hierarchy, successfactors, SF, EC, PAY, RBP , KBA , LOD-SF-EC-RBP , Roles & Permissions (EC Core only) , LOD-SF-EC-PAY , Payment Information (Bank Information) , Problem
SAP Knowledge Base Article - Public