02-20-2014 8:47 AM
We have a requirement we have been asked to limit the access to SSN & DOB fileds in SAP.
we came to know that IT002,IT0021 & IT0704 will have the SSN & DOB details.
Can we restrict access to these fileds (SSN & DOB ) for specific set of users even they have access to these inoftypes(0002,0021,0704) from security perspective?If not wat all the alternatives we have from Dev & Fucntional standpoint
Your response in this regards is greatly appreciated
02-20-2014 10:16 PM
Vamshi,
Restricting a specific field in an Infotype to be viewable only for one set of user while not viewable by another set of users is possible. However, it is not done through security settings, specially for Infotypes where sub-types are not available. You can explore extending Infotypes e.g. 0002 to include subtypes to gain more control but such enhancements need to properly evaluated.
One non-security related resolution for your scenario is to explore editing the table T588M in SM30. Here you can edit fields and use MOLGA+PSA combinations to restricting your user populations to separate PSAs and there by separate field view capabilities.
Regards,
Shivraj Singh