SAP Knowledge Base Article - Public

2229272 - How to check if a User has a Permission (for example Report permission)? - User Role Search

Symptom

  • How do I know if a user is able to access reporting data for a specific report or employee?
  • What are the roles granted to specific users?
  • How to check if a user has a specific permission?

Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental.

Environment

  • SAP SuccessFactors HXM Suite
  • SAP SuccessFactors Employee Central

Resolution

The User Role Search function allows searching specific roles granted to users.

Below are some examples on how you can use the User Role Search function to check report data access:

1st Example

You want to know if the user sfadmin has access to Report Centre:

  1. Admin Centre > Search for User Role Search
  2. Enter the Access User, Permission Category, Permission type
    A Target user is not required here since access to the Report Centre tab does not have any target population assocaited to itself
  3. Select Search Roles. In this case the user sfadmin gets Report Centre access through the two roles 'System Admin' and 'Employee Self Service'


    sfadmin_userRoleSearch.png

2nd Example

You want to know if the user cgrant has access to any reporting data for the user admin so you can start checking if the User cgrant has report access/permission for the user admin as follows:

  1. Admin Centre > Search for User Role Search
  2. Enter the Access User, Permission Category, Permission type and the Target User
  3. Select Search Roles. In this case the User cgrant has no access to report data for the user admin.
    cgrant permission.png

  4. We can check this by quickly running an Ad Hoc report created by the User cgrant.

cgrant result.png

 

3rd Example

You want to know if the user admin has access to any reporting data for the user cgrant so you can start checking if the User admin has report access/permission for the user cgrant as follows:

  • Admin Centre > Search for User Role Search
  • Enter the Access User, Permission Category, Permission type and the Target User
  • Select Search Roles. In this example, the User admin has access to report data for the user cgrant via the Role name ‘System Admin’
    1. Specifically, via the Groups/Users granted with role permission access and their targets
    • Group/User granted with role permission: System Administrators, Master
    • Target population: All

      Admin Permissionpng.png           
          
  • We can confirm this by quickly running an Ad Hoc report created by the User admin.

 admin result.png

The same approach can be used for different reports like List Views, Classic Reports etc..

Report Selection.png

You can also select multiple users in order to compare the Permission they have.

group & target.png

Keywords

Permission, check, User, Authorization, Role, based, RBP, Search, Group, Target, Population, View, Manage, Proxy, import , KBA , user role search , report permission , user permission , authorization , restriction , rbp , LOD-SF-ANA , Analytics & Reporting (Ad Hoc, YouCalc, ORD) , LOD-SF-EC , Employee Central , LOD-SF-PLT , Platform Foundational Capabilities , LOD-SF-RCM , Recruiting Management , LOD-SF-EP , Employee Profile , LOD-SF-SCM , Succession Management , LOD-SF-PM , Performance Management , LOD-SF-CDP , Career Development Planning , LOD-SF-GM , Goal Management , LOD-SF-PLT-SEC , Security & Permissions , LOD-SF-CMP , Compensation Management , How To

Product

SAP SuccessFactors HXM Suite all versions