Skip to main content

Known Issue

 Aiswarya Sudhakar (AiswaryaSudhakar)
MOD
Principal Knowledge Management Specialist
Pegasystems Inc.
IN
AiswaryaSudhakar Member since 2021 32 posts
MOD
Posted: 3 weeks 2 days ago
Last activity: 1 week 4 days ago
Posted: 25 Apr 2025 6:19 EDT
Last activity: 7 May 2025 0:10 EDT

Unable to mask operator-related details in Insights

Issue

Even when operator-related data is masked, it gets exposed to unauthorized users when viewing insights.

Symptoms and Impact

Exposure of Personally Identifiable Information (PII) to unauthorized users.

Steps to reproduce

  1. Create an Insight exposing operator-related properties (e.g. Create Operator Name).
  2. Create a read Access Control Policy on the property in the Work- class to mask operator-related properties for certain users.
  3. View the Insight as a user who is only authorized to see the masked data, not the actual data beneath it.

Root Cause

This is a known product limitation.
pxCreateOperator is used internally in RD filters. So, it should not be utilized in access control.

Suggested Approach

Avoid setting pxCreateOperator in the access control configuration.
An enhancement request has been entered for this issue but has not yet been assigned to a specific release. This known Issue will be updated with release details when the enhancement for this issue is available.

References

Access Control Policy rule

To see attachments, please log in.
Security
Found in Version header: Pega Platform 8.8.5, Pega Platform 8.8.4, Pega Platform 8.8.3, Pega Platform 8.8.2, Pega Platform 8.8.1, Pega Platform 8.8, Pega Platform 24.1.3, Pega Platform 23.1.4, Pega Platform '24.2, Pega Platform '24.1.2, Pega Platform '24.1.1, Pega Platform '24.1, Pega Platform '24, Pega Platform '23.1.3, Pega Platform '23.1.2, Pega Platform '23.1.1, Pega Platform '23, Pega Platform 24.2.2, Pega Platform 24.2.1, Pega Platform '25

Did you find this content helpful?
Yes
No

  • Reply
  • RANABOTU PRAVEEN REDDY

Related content:

Related content has not currently been identified for this post.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice