BOBJ data authorizations based on SAP
I am here for some advice.
I have a Webi report running on a Universe created in IDT - Using an ODBC connection.
The users who are expected to run these reports are SAP users, with certain authorizations to limited company codes. The users have been imported from SAP into BO using SAP authentication.
I am trying to ensure that these users can only see in the reports the data that they are authorized to see in SAP. But since the connection was created using my credentials, all users are able to see everything that I can see (no restrictions to company codes)
What's the best way of doing this? I have read about row level security in IDT, but it seems to be able to only restrict for hard coded set of company codes but not by determining the authorizations based on user login.
There is NO BW/Bex layer between SAP and Webi.
There is no SSO in place either.
Hope the query is clear. Please let me know if you need further details.