Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Showing results for 
Search instead for 
Did you mean: 

Authorization Access to Infotypes

Former Member
0 Kudos

Hi,

I am trying to set up some authorisations which restrict access to certain infotypes.

I have tried to stop a user changing IT9 but still able to view it and I have made the below settings in the role using P_ORGIN

Authorization Level: R

Infotype: 9

Pers Area: *

Employee Grp: *

Employee Subgrp: *

Subtype: *

Org Key: *

But I can still create and edit the bank details.

Am I using the wrong object?

Thanks

Tom

1 ACCEPTED SOLUTION

jurjen_heeck
Active Contributor
0 Kudos

Have you tried this with an ST01 trace in the background? The trace analysis should give you some clues about failed and succeeded authorization checks.

This is the only P_ORGIN object in all roles assigned to the user? If not, what are the values of the other ones?

1 REPLY 1

jurjen_heeck
Active Contributor
0 Kudos

Have you tried this with an ST01 trace in the background? The trace analysis should give you some clues about failed and succeeded authorization checks.

This is the only P_ORGIN object in all roles assigned to the user? If not, what are the values of the other ones?