Symptom
When a business user has read access restricted to sales order and purchase order for "X" company but also was able to view "Y" company sales order and purchase order.
(Here X and Y refers to Company IDs)
Environment
SAP Business ByDesign
Reproducing the Issue
- Go to Application and User Management work center
- Go to Business Users
- Search for user
- Select the Edit button
- Go to Access Rights
- Go to Work Center and View Assignment tab
- Work center view CRM_WOC_SALESORDERS and SRM_PURCHREQUESTSORDERS with read access restricted
Cause
Business user can access the sales orders due to the access rights of PERSONAL DATA DISCLOSURE work center view of DATAPRIVACY workcenter which is deprecated.
Resolution
Follow the Steps to limit the authorization for other company sales order and purchase order:
- Go to Application and user management work center
- Go to Business Users view.
- Select user "XX" (Here XX refers to an Employee ID)
- Select the Edit button
- Go to Access rights
- Go to Workcenter and view assignment tab
- Remove DATAPRIVACY workcenter from the list and save.
Keywords
Limit Sales order , Limit Purchase order, User restriction , KBA , limit sales order , limit purchase order , user restriction , SRD-CC-IAM , Identity & Access Management , Problem