Users that utilize site-security may find that scheduled export jobs return records outside of the scope of site-secured user that scheduled the job.
We are currently evaluating this issue for a fix in a future service pack.
Steps to Duplicate
1. Create or modify an application user to be site-secured. Add sufficient feature-permissions to their role to allow the user to run and schedule exports. (ensure that "Run queries as admin" is not turned on under Feature Permissions > Query) 2. Create an Ad-hoc query that contains constituents from multiple sites, save with the option of "create a selection > dynamic". 3. Create an Export Definition that exports Constituent Name & Site Name. 4. Create an Export using the the Query and ED from steps 2-3, save with site security using the same site applied to step 1. 5. Run the export as the site-secured user and note the number of records processed. Download the output and verify that the correct site-security has been applied. 6. Schedule the job to run once (a few minutes from now). Note the number of records processed (it should be more than the manual run). Download the output and note that records with sites that should not be visible are in the export.