Access Restriction Based on Customer Roles
We have a requirement to limit changes on Accounts depending on the Customer Role. Users need to be able to change/edit Prospect accounts (Account Role BUP0002) but no changes can be made to Customer Accounts (Account Role CRM000).
Customer Accounts (CRM000) are mastered in SAP ECC and no change is allowed in C4C.
Prospect Accounts (BUP0002) are created in C4C.
Within the Business Role restrictions we can restrict the Read/Edit access to all Accounts but not per Account Role. We can also perform restrictions at Account field level, but once more, this is for all accounts and not specific to each account role.
Is there a way we can define Account Restrictions based on the Account Role, Prospect and Customer.
Thank you for your help.
Jan Westhues replied
actually you're partly true.
In fact, you can bind a page layout not only to business roles but also to account roles.
This process consists of two parts.
Create two page layouts for accouts, one where all necessary fields are maintainable for prospects and another one where all fields are read-only.
Then go into the assignment of page layouts and choose Business Object "Account" and Instance Type "Role".
There you can maintain the page layouts in a matrix structure consisting of a) business roles and b) account roles.
These accounts roles are in fact related to either customers or prospects.
This can be checked in fine-tuning task "Accounts" --> "Account roles". Each roles is either assigned to customers or prospects.
I can elaborate further if needed but this works definitely as we've have done so in several customer projects.