Symptom
I want to enable the restricted dictionary/shared folder visibility for Administrators as well. By adding the Administrators User group to a user, the user gets access to the extended Setup menu. However, the Administrators User group is also used at the top level of the Access rights. Is it “safe” to remove Administrators from the Access right lists? For those users who needs to be “Super Admins” (Administrators with full access) I have created an additional User group. If so, we can combine being an administrator AND limiting the access to the desired folders/dictionary groups?
Resolution
Yes, access rights for admins can safely be removed. Admins technically do not need to have access to any folder, so you can separate access to content in the way you have proposed. However, if the user is an admin, they can add the permission back.
Keywords
KBA , BPI-SIG-CA-SEC-UM , User Management for SAP Signavio , How To