09-15-2008 12:19 PM
Hi,
I am trying to set up some authorisations which restrict access to certain infotypes.
I have tried to stop a user changing IT9 but still able to view it and I have made the below settings in the role using P_ORGIN
Authorization Level: R
Infotype: 9
Pers Area: *
Employee Grp: *
Employee Subgrp: *
Subtype: *
Org Key: *
But I can still create and edit the bank details.
Am I using the wrong object?
Thanks
Tom
09-15-2008 12:28 PM
Have you tried this with an ST01 trace in the background? The trace analysis should give you some clues about failed and succeeded authorization checks.
This is the only P_ORGIN object in all roles assigned to the user? If not, what are the values of the other ones?
09-15-2008 12:28 PM
Have you tried this with an ST01 trace in the background? The trace analysis should give you some clues about failed and succeeded authorization checks.
This is the only P_ORGIN object in all roles assigned to the user? If not, what are the values of the other ones?