05-20-2010 10:38 AM
Hi,
we're currently contemplating the use of one time vendors. I found (using a trace) that when using MIRO or FB60, no additional chack is performed with regard to entering bank details (and no 4 eye principle is being applied . This off course creates a serious security issue when one desires to perform payments by bank (if no precautions are taken).
My question is: "is there a user exit known to any of you that can be used to build in an extra authorization check for these situations"?
Regards,
Jesse
05-21-2010 8:32 PM
05-21-2010 9:08 PM
In this case, the bank details are a part of the transaction data and not the master data.
That is what cpd accounts are.
You can consider using the "parking" feature or a release procedure.
More efficient IMO is an analytical control after-the-fact.
It is not bait, but does provide some "shiners"...
Cheers,
Julius