Skip to content
Item Detail
1H 2026 Edit
Content Security Policy Settings Removed from Provisioning
General Availability Info Only Automatically On Impact: Medium AI Enriched
Description

The Content Security Policy (CSP) settings in Provisioning were deprecated in 2H 2025 and have now been removed from the UI. Since 2H 2025, you can enable and configure CSP using the Application Security Feature Settings admin tool.See More

Detailed Description

The Content Security Policy (CSP) settings in Provisioning were deprecated in 2H 2025 and have now been removed from the UI. Since 2H 2025, you can enable and configure CSP using the Application Security Feature Settings admin tool. In 2H 2025, we migrated your CSP configurations from Provisioning Application Security Settings to Admin Center Application Security Feature Settings , making the original Provisioning settings invalid and no longer configurable.

Impact Assessment

This enhancement is automatically on and directly affects all SAP SuccessFactors implementations without requiring any configuration. Implementation teams should validate that the new behavior aligns with business requirements and communicate the change to end users if necessary.

Test Recommendations
• Test role-based permissions for affected roles to ensure correct data access after the change. • Validate that no unintended data exposure occurs with the new permission settings.
Product: Platform
Modules: Security and Compliance
Feature: Not Applicable
Reference: SFASE-3003
Version: 1H 2026
Valid as Of: May 15, 2026
Latest Revision: Apr 03, 2026
Affected Areas:
Compliance & Data Privacy Administration Documents Security & Permissions AI & Business AI