Role design BI ehp1
we are planning bi secuirty - we are designing BI security for sales organization like billing,booking, sales out etc . we have proposed our design like -when user request ticket -he will provide to security team with end/power/super etc and Region, and Billing, Booking, sales out etc
once we get user request we are going to give one standard role with bisic tcodes(su53,sp02 etc), second end user/power/super role (Restricting infoareas, infocubes), Third billing/booking role (in this we give s_rs_auth analyis role )
and for hierarchy user maintained in the table . whenever user adds in se16 table he will get access to corresponding region (one of developer saying we
can maintain like this . still i have no idea how it works. if any body have worked like this please let me know.
Please suggest this kind of role maintanence is good or any other suggestions for overall design maintenance