Hello Experts,

I am trying to restrict a user from seeing the complete hierarchy. The user should only be able to see the text node "text1" and below.

I did the following:

1) Using Tcode RSECADMIN I created an Authorization Object ZTEST2 for 0COMP_CODE hierarchy at node level "text1".

2) I have assigned user "User1" to the Authorization object ZTEST2.

Now, when I click on the "Analysis" tab and click on "Execute As" as user "User1" and then I check the "RSRT" to execute a query that has Company Code hierarchy as a variable. When I click on the prompt for variable input for hierarchy i see the hierarchy name and then when i execute the query i get to see the complete hierarchy.

I would really appreciate if somebody could point me where I am wrong.

I see the following in the error log:

Buffering the Authorization Data

Buffering for InfoProvider 0FIGL_C10 and Users ABARAPATRE

InfoObject Properties Defined

Reading of Directly Assigned Authorizations

Direct Assignment Does Not Include Universal Authorization 0BI_ALL

Reading the Indirect Assignments with Authorization Object S_RS_AUTH

Does user have OBI_ALL?

Yes, the User Has Universal Authorization 0BI_ALL

Indirect Assignment Includes Universal Authorization 0BI_ALL

All Other Assignments Will Be Ignored

The Following Value Authorizations Were Found

TCTAUTH TCTIOBJNM TCTSIGN TCTOPTION TCTLOW TCTHIGH

0BI_ALL 0COMP_CODE I CP *

Thanks.

Regards,

bw_newbie