Restrict HR case updates from personal emails [New in Security Center 1.3 and updated in 1.5]
Use thesn_hr_core.restrict_guest_email property to control whether a user can respond back to a HR case with their personal email.
When the sn_hr_core.restrict_guest_email property is not set to true, a user can send an email from a personal account referencing the HR case to be included in the work notes. This could result in minor confidentiality or integrity issues if the personal email is compromised or communicating insecurely. An admin may want to restrict the ability of users to respond to HR cases from their personal email, since they cannot be confident of the user accessing the personal email account.
More information
| Attribute | Description |
|---|---|
| Configuration name | sn_hr_core.restrict_guest_email |
| Configuration type | System Properties (/sys_properties_list.do) |
| Data type | boolean |
| Recommended value | true |
| Default value | false |
| Category | Data protection |
| Security risk |
|
| Dependencies and prerequisites | None |
| Functional impact | This property controls whether or not a reply from a personal email address will update an HR Case. Set to true, any reply from personal email will be added to the case notes. If false, the case and notes will not be updated. |