I tried to use groups of authorization to Restrict the visualization of classes of financial documents. and did not work.

now what I am trying to place a restriction on the use of ledger accounts. so far I've done is:

1. Create authorization group in the table TBRG on objects and F_SKA1_BES F_BKPF_BES.

2. The authorization group that believes it should be allocated to the account you want Restrict by the transaction FS00.

3. Assign the role the group of authorization to create, so that the user has that role just to work on that account.

however when the user entry to test quality environment, I can do different activities on all accounts. In no time the system gives notice that is not authorized and can perform different activities.

and also try to create additional group authorization for the transaction SE54, but that does S_TABU_DIS on property and add it to the role, nor does the restriction.

do not know what else to do ... can please help me ?????

thanks

Hi,

Create authorization group in the table TBRG on objects and F_SKA1_BES,, F_BKPF_BES?Not clear on what you are trying to achieve.

1. Normally A group of tables are assigned to an authorization group and you assign that authorization group in the object "S_tabu_DIs".

2. extended authorization protection ( BRGRU) please insert the authorization group for all the authobjects with field name BRGRU for the test user, Make sure the auth group is configured correctly.

Thank you very much for your help, and place the authorization in all fields BRGRU the role and now it works the restriction.

Thank you very much