<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1334192293361106&amp;ev=PageView&amp;noscript=1">

Aside from it being a prerequisite to many of the universal upgrades slated for Q3 2018, Role-Based Permissions (RBP) is the latest version of the SAP SuccessFactors security framework. RBP allows administrators to automate permissions assigned to individual contributors, managers, HR business partners, matrix managers as users move within the organization. RBP also allows for granular management of field-level permissions.

Simply put, RBP manages the access in the SAP SuccessFactors suite. The main elements to understand in RBP are: permission groups, and permission roles. The main concept behind RBP is having users (aka granted users), with permissions (aka permission role) that are applied against other users (aka target population).

SAP SuccessFactors Role-Based Permissions

Permission Group

Permission Groups are groups of active users that can be used as “Granted Users” and/or “Target Population.” Within the system different attributes can be used to create these groups, for example: division, department, location, country, job-code, etc., or even by name. You can also combine different attributes and exclude users from the groups.

Granted Users

Granted Users get assigned to a permission role. The system allows you to use a group (as mentioned above), or other pre-loaded options are available as well, for example: Managers, HR Managers, Matrix Managers, Custom Managers, Second Managers, Calibration Facilitators, Global Assignments, and Everyone.

Permission Roles

Once the Granted Group is defined, it is time to assign permissions. It can be as simple as getting access to the Performance Management module, or as granular as field permissions that can be “view,” “edit,” “correct” and/or “delete.” Permissions are categorized into two (2) main buckets: User permissions or Administrator permissions. These permissions are selected by simply selecting check boxes. The list of permission options varies based on module, sub-module complexity, and availability.

Target Population

The last step is selecting the target population. “Granted Users” can access and perform permissions selected on the “Target Population.” A few items to keep in mind, based on Granted User selection:

  • If Granted User is Everyone or a Group the Target Population options are: everyone, granted user’s department, division, location, granted user.
  • If Granted User is Manager (matrix, second, custom) the target population options are: direct reports (additional levels can be selected: 1, 2, all levels down), or direct reports from a specific group.

Please feel free to reach out with your questions related to upgrading from legacy admin permissions to RBP. Remember, RBP is a prerequisite for many of the updates coming in Q3, so don't delay if you need to upgrade!

Get SAP SuccessFactors Support