3564116 - Business User able to open and close periods even though there is an access restriction

• A business user with restricted access rights is still able to make changes in certain areas.
• Despite having only read access to the work center view: Sets of Books and Assigned Companies, the business user can still modify Open and Close Periods.
• This issue is observed even when write access is restricted for the business user.

SAP Business ByDesign

1. Navigate to the Application and User Management work center.
2. Try to access the Business users sub view.
3. Search for the required business user ID and select Edit -> Access Rights.
4. Navigate to the Access Restrictions tab.
5. Locate the work center view ID FIN_COMPANIES (Sets of Books and Assigned Companies).
6. Observe that the write access is set to 'No Access', yet the business user can still make changes to Open and Close Periods.

Under that particular business user ID, the work center ID FIA_CLOSINGCOCKPITAUDIT have both read and write access permitted for the relevant Company.

Setting the read and write access for relevant company will allow the business user to set process control for that company and it will also allow to open and close the period for the company. This is the reason why the business user able to open and close the periods.

1. Along with work center ID's FIN_CLOSINGCOCKPITGL and FIN_COMPANIES, the work center ID FIA_CLOSINGCOCKPITAUDIT access needs to be restricted for the required business user as well.
2. After restricting the access for the work center: FIA_CLOSINGCOCKPITAUDIT check if the user is able to open and close the periods by saving it.
3. It throws an error that "You are not authorized to change the data".

User access restrictions, Business Roles, Read Access, Write Access, Open and Close Periods, Sets of Books and Assigned Companies, Access Rights, Work Center View, FIN_COMPANIES. , KBA , SRD-FIN-GL , General Ledger , Problem