2502508 - Administator User Cannot See All Business Roles When Editing User's Access Rights

When trying to assign business roles to a business user in the Edit Access Rights screen, not all the business roles are displayed

SAP Cloud for Customer

1. Go to the Administrator work center
2. Access the Business Users view
3. Select a user and click the Edit button, then select the Access Rights option
4. Navigate to the Business Role Assignment tab
5. Here, you only see a fraction of the business roles available in the system

From version 1702 onwards, a categorization was introduced, separating business roles into local or global business roles. Depending on the administrator's access rights and scope restrictions, they will be local or global (i.e. a local administrator will see only local business roles, while global administrators will see all business roles).

While creating a business role, is it possible to choose if it will be a local role or global role through the Scope field in the General tab of the business role. By default, the system determines the scope restriction (local/global) automatically, but it is possible to toggle the Select Scope Manually option to set it manually.

What determines whether an administrator has local or global restriction, is the assignment of work center view SEOD_ADMIN_SETUP_WCVIEW - General Settings.

As such, to change this situation, it is either possible to assign this view to the relevant administrators, or to change the Scope restriction of the business roles.

Please note that a business role will be created as global scope only, if any of the work center views mentioned are not allowed or partially allowed in the Administrator -> General settings -> Work Center View Restrictions for Local Administrators view.

The recommendation can also be found in the help document: Restricting Access for Local Administrators

business role, local, role, scope, administrator , KBA , business role , edit access rights , SRD-CC-IAM , Identity & Access Management , How To