/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- Users can add and use any user as a proxy, including portal administrators, even though the Manage Proxy Relations permission is not granted in any assigned portal role.
- A portal role with Execute maintenance tasks and Manage Security Principals (Administration type) enables proxy management options.
- With only Maintenance permission, submitting a change in Portal > Maintenance > User ID Update fails with error 403 Forbidden.
- After adding Manage Security Principals to the same role, the User ID Update succeeds and proxy management capabilities become accessible.
- The behavior is reproducible across multiple environments.
Read more...
Environment
- SAP Sales Performance Management
- Incentive Management
Product
SAP Incentive Management all versions
Keywords
KI1H2026, COM-133233, proxy, manage proxy relations, manage security principals, maintenance permission, user id update, 403 forbidden, permissions coupling, portal role, proxy users, least privilege, administration type, authorization model, incentive management portal , KBA , CEC-SAL-COM , Incentive Management , Product Enhancement
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)