/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PublicSymptom
- There may be authorization errors while using different apps in SAP S/4HANA Cloud Public Edition
- Example "No authorization for maintaining sales documents in <Sales Organization ID>"
Environment
SAP S/4HANA Cloud Public Edition
Reproducing the Issue
- Create a Business Role to give access to some app, using Maintain Business Roles
- Add restrictions to the role, by clicking Maintain Restrictions
- Update one of the restriction areas to have a value, like setting the Company Code value that the user will have access to
- Now access the app that the role is providing access to
- There may be errors even when viewing or creating items for the Company Code that can be accessed
Cause
- By default the restriction areas that had no value maintained are set to "No Access"
- Even though being provided access to the correct Company Code, some other authorization is blocking access
Resolution
If the access is not intended to be blocked by other restriction areas, changing the blank entries to "Unrestricted Access" will stop those restriction areas from having an impact:
- Create a new role from template
- Click on Maintain Restrictions
- Change one of the dropdowns to "Restricted" for Write, Read, or Value Help
- Now at the top of the "Restricted" section, there is a checkbox that says "Restriction Area and Values"
- Select that checkbox, which will now select all restrictions that are available for that section
- [Optional] If restrictions are already set for a role, then all of the restrictions can still be selected in step 5, and just de-select all of the values that already be set (like Company Code in this example)
- At the top of the section click "Unrestricted Access" which will now set all selected values to "Unrestricted"
- At this point the default behaviour of the restrictions are now changed to be unrestricted unless otherwise stated
- Specific options can now be set like Company Code to restricted
Keywords
KBA , BC-SRV-APS-IAM , Identity and Access Management , Problem
Product
SAP S/4HANA Cloud Public Edition all versions
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)