SAP Release Manager

2H 2025 Edit

New Option to Enable Transactional Verification for Critical Transactions

General Availability Info Only Customer Configured Impact: Medium AI Enriched

Description

Administrators can now enable multi-factor authentication (MFA) checks to critical transactions in SAP SuccessFactors. See More

Detailed Description

Transactions Administrators can now enable multi-factor authentication (MFA) checks to critical transactions in SAP SuccessFactors. The new setting, Enable Transactional Verification is on the Manage SAML SSO Settings page. It allows supported critical transactions to trigger an enhanced authentication process using MFA provided by the Identity Authentication service.Note In this release, the transactional MFA check is supported for: Updating payment information in Employee Central (primary scenario) Registering new OpenID Connect (OIDC) clients in SAP SuccessFactors (optional scenario for testing MFA setup) For more information, refer to the Related Information section.

Impact Assessment

This feature may require configuration review, user communication, and regression testing of related processes in Identity and Access Management implementations. Transactions Administrators can now enable multi-factor authentication (MFA) checks to critical transactions in SAP SuccessFactors. The new setting, Enable Transactional Verification is on the Manage SAML SSO Settings page. Implementation teams should verify that existing configurations remain valid and test core business scenarios after the upgrade to confirm correct behavior.

Test Recommendations

• Verify the feature is enabled and accessible from the expected navigation path or configuration area in a test environment.
• Test the end-to-end scenario with representative test data covering both happy paths and error conditions.
• Validate correct behavior across all relevant user roles and permission configurations (admin, manager, employee).
• Test edge cases: empty or missing values, boundary conditions, concurrent users, and large data sets.
• Confirm that existing integrations, workflows, and downstream processes are not affected by the change.
• Test feature visibility and access controls across different RBP roles to confirm correct enforcement.

Product: Employee Central

Modules: Identity and Access Management Localization

Feature: Payment Information; Single Sign-On

Reference: PLT-87341

Version: 2H 2025

Valid as Of: Nov 14, 2025

Latest Revision: Oct 03, 2025

SAP Documentation

Affected Areas:

Employee Central Identity and Access Management Localization Platform & Administration Role-Based Permissions Security & Authentication