4Performance Security Appendices
Performance Security Appendices
Appendix A - Default User Types
The three default user types in Taleo Performance can be used as the basis for bespoke user types required for your implementation.
Default User Type Permissions
This table indicates which permissions the three default user types have, along with including the domains and permissions a Taleo Performance user could reasonably be expected to use in relation to Compensation and myTaleo. Domains are only available if the related module has been activated in Product Configuration.
| Domain | Permission | Employee | HR Administrator - Global | Manager - Global |
|---|---|---|---|---|
| Recruiting > Candidates | General > Security level for external candidates (in edit mode) > confidential | |||
| General > Security level for external candidates (in edit mode) > general | Yes | Yes | Yes | |
| General > Security level for external candidates (in edit mode) > restricted | ||||
| General > Security level for external candidates (in view mode) > confidential | ||||
| General > Security level for external candidates (in view mode) > general | Yes | Yes | Yes | |
| General > Security level for external candidates (in view mode) > restricted | ||||
| General > Security level for internal candidates (in edit mode) > confidential | ||||
| General > Security level for internal candidates (in edit mode) > general | Yes | Yes | Yes | |
| General > Security level for internal candidates (in edit mode) > restricted | ||||
| General > Security level for internal candidates (in view mode) > confidential | ||||
| General > Security level for internal candidates (in view mode) > general | Yes | Yes | Yes | |
| General > Security level for internal candidates (in view mode) > restricted | ||||
| Performance > Performance Reviews | Access administration tools | Yes | ||
| Access via Manager Center | Yes | Yes | ||
| Manage | Yes | |||
| Manage > If this user is one of the authors | Yes | Yes | ||
| Manage > If this user is the direct manager | Yes | |||
| Manage > If this user is a higher level manager | Yes | |||
| Manage > If this user is a matrix manager | ||||
| Manage > If it belongs to the user's coverage area | ||||
| Manage > If this user is a mentor | ||||
| Manage > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| View | Yes | |||
| View > If this user is one of the authors | Yes | Yes | ||
| View > If this user is the direct manager | Yes | |||
| View > If this user is a higher level manager | Yes | |||
| View > If this user is a matrix manager | ||||
| View > If it belongs to the user's coverage area | ||||
| View > If this user is a mentor | ||||
| View > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| Performance > Succession Plans | Access administration tools | Yes | ||
| Allow nominations | ||||
| Manage | Yes | |||
| Manage > If this user is the direct manager of the related job position | Yes | |||
| Manage > If this user is a higher level manager of the job position manager | Yes | |||
| Manage > If this user is a higher level manager of the job position manager | Yes | |||
| Manage > If this user is a matrix manager | ||||
| Manage > If it belongs to the user's coverage area | ||||
| Manage > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| View | Yes | |||
| View > If this user is the direct manager of the related job position | Yes | |||
| View > If this user is a higher level manager of the job position manager | Yes | |||
| View > If this user is a higher level manager of the job position manager | Yes | |||
| View > If this user is a matrix manager | ||||
| View > If it belongs to the user's coverage area | ||||
| View > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| Performance > Goal Plans | Access administration tools | Yes | ||
| Manage | Yes | |||
| Manage > If this user is one of the authors | Yes | Yes | ||
| Manage > If this user is the direct manager | Yes | |||
| Manage > If this user is a higher level manager | Yes | |||
| Manage > If this user is a matrix manager | ||||
| Manage > If it belongs to the user's coverage area | ||||
| Manage > If this user is a mentor | ||||
| Manage > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| View | Yes | |||
| View > If this user is one of the authors | Yes | Yes | ||
| View > If this user is the direct manager | Yes | |||
| View > If this user is a higher level manager | Yes | |||
| View > If this user is a matrix manager | ||||
| View > If it belongs to the user's coverage area | ||||
| View > If this user is a mentor | ||||
| View > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| Performance > Career Plans | Manage | Yes | ||
| Manage > If this user is one of the authors | Yes | Yes | ||
| Manage > If this user is the direct manager | Yes | |||
| Manage > If this user is a higher level manager | Yes | |||
| Manage > If this user is a matrix manager | ||||
| Manage > If it belongs to the user's coverage area | ||||
| Manage > If this user is a mentor | ||||
| Manage > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| View | Yes | |||
| View > If this user is one of the authors | Yes | Yes | ||
| View > If this user is the direct manager | Yes | |||
| View > If this user is a higher level manager | Yes | |||
| View > If this user is a matrix manager | ||||
| View > If it belongs to the user's coverage area | ||||
| View > If this user is a mentor | ||||
| View > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| Performance > Development Plans | Access administration tools | Yes | ||
| Manage | Yes | |||
| Manage > If this user is the owner | Yes | Yes | ||
| Manage > If this user is the direct manager | Yes | |||
| Manage > If this user is the high level manager | Yes | |||
| Manage > If this user is a matrix manager | ||||
| Manage > If it belongs to the user's coverage area | ||||
| Manage > If this user is a mentor | ||||
| Manage > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| View | Yes | |||
| View > If this user is the owner | Yes | Yes | ||
| View > If this user is the direct manager | Yes | |||
| View > If this user is a higher level manager | Yes | |||
| View > If this user is a matrix manager | ||||
| View > If it belongs to the user's coverage area | ||||
| View > If this user is a mentor | ||||
| View > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| Performance > Employee Metrics | Manage | Yes | ||
| Manage > If this user is the owner | ||||
| Manage > If this user is the direct manager | Yes | |||
| Manage > If this user is the high level manager | Yes | |||
| Manage > If this user is a matrix manager | ||||
| Manage > If it belongs to the user's coverage area | ||||
| Manage > If this user is a mentor | ||||
| Manage > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| View | Yes | |||
| View > If this user is the owner | ||||
| View > If this user is the direct manager | Yes | |||
| View > If this user is a higher level manager | Yes | |||
| View > If this user is a matrix manager | ||||
| View > If it belongs to the user's coverage area | ||||
| View > If this user is a mentor | ||||
| View > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| Performance > Team Management | Access | Yes | ||
| Access > If this user is the direct manager | Yes | |||
| Access > If this user is a higher level manager | Yes | |||
| Access > If it belongs to the user's coverage area | ||||
| Access > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| Access Talent Browser | Yes | Yes | Yes | |
| Access administration tools | Yes | |||
| Access centralized search | Yes | Yes | ||
| Access Reporting | ||||
| Access Manage Matrix Manager | Yes | |||
| Performance > Administration | Access application in maintenance mode | |||
| Allow system administration | ||||
| Performance > Employee Profile | Manage | Yes | Yes | Yes |
| Manage > If this user is the owner | Yes | Yes | ||
| Manage > If this user is the direct manager | ||||
| Manage > If this user is the high level manager | ||||
| Manage > If this user is a matrix manager | ||||
| Manage > If this user is a mentor | ||||
| Manage > If it belongs to the user's coverage area | ||||
| Manage > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| View | Yes | Yes | Yes | |
| View > If this user is the owner | Yes | Yes | ||
| View > If this user is the direct manager | Yes | |||
| View > If this user is the high level manager | Yes | |||
| View > If this user is a matrix manager | ||||
| View > If this user is a mentor | ||||
| View > If it belongs to the user's coverage area | ||||
| View > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| Performance > Business Goals | Manage | Yes | ||
| View | Yes | |||
| Grid > Knowledge Exchange | Access Knowledge Exchange | Yes | ||
| Manage Knowledge Exchange | Yes | |||
| Grid > Solution Exchange | Access Solution Exchange | Yes | ||
| Manage Solution Exchange | Yes | |||
| Grid > Talent Exchange | Access Talent Exchange | Yes | ||
| Manage Talent Exchange | Yes | |||
| Compensation > Compensation Data | Manage compensation history | |||
| View compensation history | ||||
| View compensation history > If this user is the owner | ||||
| View compensation history > If this user is the direct manager | ||||
| View compensation history > If this user is a higher level manager | ||||
| View compensation history > If it belongs to the user's coverage area | ||||
| View compensation history > If it belongs to the user's coverage area or it is associated to a group to which this user belongs | ||||
| myTaleo > Administration | Access the administration section | |||
| myTaleo > Dashboards | Access default dashboard | |||
| Learning > Global Learning | Access Learn | |||
| Learning > Learn | Access Learn as a default user | |||
| Access Learn as a supervisor | ||||
| Access Learn as an administrator | ||||
| Access Learn as user 1 | ||||
| Access Learn as user 2 | ||||
| Access Learn as user 3 | ||||
| Common > Pools | Manage | Yes | Yes | |
| Manage > If this user is the pool owner or a pool user | ||||
| Manage > Allow creating and deleting pools | ||||
| View | Yes | Yes | ||
| View > If this user is the pool owner or a pool user |
Appendix B - User Type Permissions
These are all of the Taleo Performance user type permissions.
List of Taleo Performance User Type Permissions
The settings in the following table relating to user permissions are found under Configuration > [SmartOrg] Administration > User Types. Most of the permissions are either for view or manage access and you must explicitly select view permissions for corresponding manage permissions to work. Manage permissions do not imply view permissions.
| Permission | Description |
|---|---|
| When no constraint is selected, the user has read-only access to all employee reviews, current or not. | |
| The user has read-only access to performance reviews for which he is the author. The author can be the employee when writing his self-assessment, the employee's direct manager or to whom the review was transferred to when writing the employee's review, or a review collaborator when writing the employee's review. | |
| The user has read-only access to performance reviews of his direct reports, even if he is not the author. | |
| The user has read-only access to performance reviews of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be viewed. | |
| The user has read-only access to performance reviews of employees for whom he is a matrix manager. | |
| The user has read-only access to performance reviews of employees for whom he is a mentor. | |
| The user has read-only access to performance reviews of employees who share the same coverage area. | |
| The user has read-only access to performance reviews of employees who share the same coverage area and/or groups. | |
| When no constraint is selected, the user has write access to all employee reviews, current or not. | |
| The user has write access to performance reviews he has created. | |
| The user has write access to performance reviews of his direct reports. | |
| The user has write access to performance reviews of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be edited. | |
| The user has write access to performance reviews of employees for whom he is a matrix manager. | |
| The user has write access to performance reviews of employees for whom he is a mentor. | |
| The user can edit performance reviews of employees who share the same coverage area. | |
| The user has write access to performance reviews of employees who share the same coverage area and/or groups. | |
| This permission adds the Performance Review and Review Analytics links in the HR Administration Tools panel and entitles the user to access the performance reviews of employees within the organization and to perform administrative tasks. | |
| This permission grants the user access to the Performance Review management view, by displaying the Team Review link displayed under the Navigation bar's More dropdown. However, the user needs viewing and/or managing rights to performance reviews to be able to view/manage reviews. | |
| The user has read-only access to succession plans for the positions of his direct reports. | |
| The user has read-only access to succession plans for job positions managed by his direct reports. | |
| The user has read-only access to succession plans for job positions managed by employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be viewed. | |
| The user has read-only access to succession plans of employees for whom he is a matrix manager. | |
| The user has read-only access to succession plans of employees who share the same coverage area. | |
| The user has read-only access to succession plans of employees who share the same coverage area and/or groups. | |
| The user has write access to succession plans for the positions of his direct reports. | |
| The user has write access to succession plans for job positions held by his direct reports. | |
| The user has write access to succession plans of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be viewed. | |
| The user has write access to succession plans of employees who's positions | |
| The user has write access to succession plans of employees who share the same coverage area. | |
| The user has write access to succession plans of employees who share the same coverage area and/or groups. | |
| This permission adds the Succession Plan link to the HR Administration Tools panel and entitles the user to performance administrative tasks in relation to succession plans. | |
| Users require this permission for the Nominate for a position... and Nominate for this position options to be available. | |
| When no constraint is selected, the user has read-only access to all goal plans, current or not. | |
| The user has read-only access to goal plans for which they are the owner. Typically, the owner will initially be the employee the object was created for. | |
| The user has read-only access to goal plans of his direct reports only. | |
| The user has read-only access to goal plans of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be viewed. | |
| The user has read-only access to goal plans of employees for whom he is a matrix manager. | |
| The user has read-only access to goal plans of employees for whom he is a mentor. | |
| The user has read-only access to goal plans of employees who share the same coverage area. | |
| The user has read-only access to goal plans of employees who share the same coverage area and/or groups. | |
| When no constraint is selected, the user has write access to all goal plans, current or not. | |
| The user has write access to goal plans for which he is the owner. Typically, the owner will initially be the employee the object was created for. | |
| The user has write access to goal plans of his direct reports only. | |
| The user has write access to goal plans of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be edited. | |
| The user has write access to goal plans of employees for whom he is a matrix manager. | |
| The user has write access to goal plans of employees for whom he is a matrix manager. | |
| The user has write access to goal plans of employees who share the same coverage area. | |
| The user has write access to goal plans of employees who share the same coverage area and/or groups. | |
| This permission adds the Goal Plan link to the HR Administration Tools panel and entitles the user to perform administrative tasks in relation to goal plans. | |
| The user has read-only access to career plans for which he is the owner. Typically, the owner will initially be the employee the object was created for. | |
| The user has read-only access to career plans of his direct reports only. | |
| The user has read-only access to career plans of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be viewed. | |
| The user has read-only access to career plans of employees for whom he is a matrix manager. | |
| The user has read-only access to career plans of employees for whom he is a mentor. | |
| The user has read-only access to career plans of employees who share the same coverage area. | |
| The user has read-only access to career plans of employees who share the same coverage area and/or groups. | |
| The user has write access to career plans for which he is the owner. Typically, the owner will initially be the employee the object was created for. | |
| The user has write access to career plans of his direct reports only. | |
| The user has write access to career plans of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be edited. | |
| The user has write access to career plans of employees for whom he is a mentor. | |
| The user has write access to career plans of employees who share the same coverage area. | |
| The user has write access to career plans of employees who share the same coverage area and/or groups. | |
| This permission adds the Career Plan link to the HR Administration Tools panel and entitles the user to perform administrative tasks in relation to career plans. | |
| The user has read-only access to development plans for which he is the owner. Typically, the owner will initially be the employee the object was created for. | |
| The user has read-only access to development plans of his direct reports only. | |
| The user has read-only access to development plans of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be viewed. | |
| The user has read-only access to development plans of employees for whom he is a matrix manager. | |
| The user has read-only access to development plans of employees for whom he is a mentor. | |
| The user has read-only access to development plans of employees who share the same coverage area. | |
| The user has read-only access to development plans of employees who share the same coverage area and/or groups. | |
| The user has write access to development plans for which he is the owner. Typically, the owner will initially be the employee the object was created for. | |
| The user has write access to development plans of his direct reports. | |
| The user has write access to development plans of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be edited. | |
| The user has write access to development plans of employees for whom he is a matrix manager. | |
| The user has write access to development plans of employees for whom he is a mentor. | |
| The user has write access to development plans of employees who share the same coverage area. | |
| The user has write access to development plans of employees who share the same coverage area and/or groups. | |
| This permission adds the Development Plan link to the HR Administration Tools panel and entitles the user to perform administrative tasks in relation to development plans. | |
| The user has read-only access to employee metrics if he is the owner. Typically the owner will initially be the employee the object was created for. | |
| The user has read-only access to employee metrics of his direct reports. | |
| The user has read-only access to employee metrics of employees for whom he is a higher level manager. Non-direct reports in other parts of the organization cannot be viewed. | |
| The user has read-only access to employee metrics of employees for whom he is a matrix manager. | |
| The user has read-only access to employee metrics of employees he is mentoring. | |
| The user has read-only access to employee metrics of employees who share the same coverage area. | |
| The user has read-only access to employee metrics of employees who share the same coverage area and/or groups. | |
| The user has write access to employee metrics if he is the owner. Typically the owner will initially be the employee the object was created for. | |
| The user has write access to employee metrics of his direct reports. | |
| The user has write access to employee metrics of employees for whom he is a higher level manager. Non-direct reports in other parts of the organization cannot be edited. | |
| The user has write access to employee metrics of employees for whom he is a matrix manager. | |
| The user has write access to employee metrics of employees he is mentoring. | |
| The user has write access to employee metrics of employees who share the same coverage area. | |
| The user has write access to employee metrics of employees who share the same coverage area and/or groups. | |
| This option enables the user to view and action requests displayed on the performance cards of direct reports. The Request Employee and Add Employee options can also be used. If the user has Mentor permissions enabled, the Request Mentoring option will be available. | |
| This option enables the user to view and action requests displayed on the performance cards of employees within his organizational chart that are not direct reports. The Request Employee and Add Employee options can also be used. If the user has Mentor permissions enabled, the Request Mentoring option will be available. | |
| This option enables the user to view and action requests displayed on the performance cards of employees who share the same coverage area. The Request Employee and Add Employee options can also be used. If the user has Mentor permissions enabled, the Request Mentoring option will be available. | |
| This option enables the user to view and action requests displayed on the performance cards of employees who share the same coverage area and/or groups. The Request Employee and Add Employee options can also be used. If the user has Mentor permissions enabled, the Request Mentoring option will be available. | |
| This option adds a Team Management link to the HR Administration Tools section. This links enable the user to access the Filter Results page. | |
| This option is used to access the Talent Browser on the Navigation bar. | |
| This permission provides access to the talent search box displayed at the top of each screen and advanced search. It also provides access to the central talent search page where results are displayed and advanced searches are run and modified. | |
| This permission is required to enable Native Reporting. This feature is not generally available in Taleo 12A. | |
| Required for the Manage Matrix Manager option to be available from the Talent Browser for logged in users. | |
| This option enables the user to access and perform administrative tasks in the Configuration module. Configuration sections relating to Taleo Performance can be accessed, with the exception of SmartOrg. Integration tasks cannot be completed with this level of access. | |
| This option gives the user access to the system when it is moved to maintenance mode. | |
| The user has read-only access to the talent profile if he is the owner. Typically the owner will initially be the employee the object was created for. | |
| The user has read-only access to the talent profiles of his direct reports. | |
| The user can view the talent profiles of employees within his organizational chart that are not direct reports. Non-direct reports in other parts of the organization cannot be viewed. | |
| The user has read-only access to the talent profiles of employees for whom he is a matrix manager, that is for his delegated employees. | |
| The user has read-only access to the talent profiles of employees he is mentoring. | |
| The user can view talent profiles of employees who share the same coverage area. | |
| The user can view talent profiles of employees who share the same coverage area and/or groups. | |
| The user has write access to the talent profile if he is the owner. Typically the owner will initially be the employee the object was created for. | |
| The user has write access to the talent profiles of his direct reports. | |
| The user has write access to the talent profiles of employees for whom he is a higher level manager. Non-direct reports in other parts of the organization cannot be edited. | |
| The user has write access to the talent profiles of employees for whom he is a matrix manager, that is for his delegated employees. | |
| The user has write access to the talent profiles of employees he is mentoring. | |
| The user has write access to the talent profiles of employees who share the same coverage area. | |
| The user has write access to the talent profiles of employees who share the same coverage area and/or groups. | |
| This option adds Business Goals and My Projects to the user's navigation inks and enables the user to view those objects. The business goals you can view are dependent on which business organizations you have access to. Note: These settings are not used for Goal Plans. |
|
| This option enables users to create business goals and sub-business goals, as well as projects. Note: These settings are not used for Goal Plans. |
|
| The user has read-only access to talent pools he has created or talent pools he has been given access to. | |
| The user has write access to talent pools he has created or talent pools he has been given access to. | |
| The user has specific create and delete rights for all talent pools. |
Talent Pool User Permissions
User type permissions control the ability to view, create, edit and delete talent pools. Permissions also affect whether user account transfers can be used to transfer talent pool ownership and responsibilities.
The following table provides examples of five user type permission configurations for talent pools and how they impact the user.
User – the letter designation (A, B, C, D, E) is used to reference users in the User Account Transfer column.
Selected User Permissions – permissions example to illustrate the impact on talent pool functionality and user account transfers.
Talent Pool Feature Access – description of the functionality the user has access to with the corresponding permissions.
User Account Transfer – indicates whether a SmartOrg user account transfer should be initiated between the users.
Transfer to means the recipient of the transfer has the required user permissions to access the current user’s features.
Transfer from indicates the user will retain, at a minimum, the feature access of the transferring user.
| User | Selected User Permissions | Talent Pool Feature Access | User Account Transfer |
|---|---|---|---|
| A | View Manage Create and Delete pools |
These are the most expansive permissions for talent pools. A user with these permissions can complete any talent pool related task and has access to all talent pool features in Taleo Performance. They can create and delete pools, view and edit all pools in the system and change pool ownership to other users. |
Transfer to: None Transfer from: All |
| B | View Manage |
These permissions are similar to A, except that the user cannot create or delete pools. They can view and edit all pools in the system, including changing the ownership. | Transfer to: A Transfer from: D, E |
| C | View Manage, if this user is the pool owner or pool user. Create and Delete pools that they own only. |
These permissions enable the user to view all pools in the system, but the user cannot change pool ownership. Also, if this user is the pool owner or a pool user, they can only edit the Members tab and delete pools that they own. |
Transfer to: A Transfer from: D, E |
| D | View Manage, if this user is the pool owner or pool user.
|
These permissions enable the user to view and manage only those pools the user is already associated with. This user cannot change the ownership, create, or delete pools. |
Transfer to: A, B, C Transfer from: None |
| E | View | These permissions enable the user to view all of the talent pools in the system only. The user can take no actions on talent pools, even if the user is a member of one of the pools. | Transfer to: A, B, C Transfer from: None |