Prevent admin level from accessing the application specific data belonging to that user when impersonating an account. This permission can be set at the application level by creating a system property specific to the application.

These system properties use the <scope>.impersonateCheck naming format (for example sn_hr_core.impersonateCheck). Create a system property with a value of true to prevent users from accessing the application-specific data belonging to another user when impersonating an account.

• sn_opp_market
• sn_jny
• sn_imt_vaccine
• sn_imt_health_test
• sn_hr_core
• sn_egd_goals
• sn_egd_core
• sn_egd_act
• sn_em
• sn_talent_aia

For each application with the <scope>.impersonateCheck property in the System Properties [sys_properties] table, ensure the property value is set to true.

Use this script to find which properties need to be updated or created on the instance:

var properties = [
    'sn_opp_market.impersonateCheck',
    'sn_jny.impersonateCheck',
    'sn_imt_vaccine.impersonateCheck',
    'sn_imt_health_test.impersonateCheck',
    'sn_hr_core.impersonateCheck',
    'sn_egd_goals.impersonateCheck',
    'sn_egd_core.impersonateCheck',
    'sn_egd_act.impersonateCheck',
'sn_em.impersonateCheck',
'sn_talent_aia.impersonateCheck'
];

var pm = new GlidePluginManager();

for (var i = 0; i < properties.length; i++) {
    var property = properties[i];
    var application = property.split('.')[0];
    var propertyValue = gs.getProperty(property, 'false');

    if (pm.isActive(application) && propertyValue.toLowerCase() != 'true') {
        gs.print(property);
    }
}

More information

To learn more about adding or creating a system property, see Add a system property.