3755104 - equipment category restriction not applied in app w0029 (process/create technical object) when using authorization object i_eqtyp - SAP s/4hana cloud public edition

Equipment category restriction is not enforced in app W0029 (Process Technical Object / Create Technical Object): although authorization field I_EQTYP is restricted (for example, to E), the equipment category value help shows all categories and creation is possible for restricted categories.

• Product: SAP S/4HANA Cloud Public Edition ;
• BP for Maintenance Worker

1. Assign an authorization that restricts I_EQTYP to a specific equipment category (for example, E) for the user.
2. Open app W0029 (Process Technical Object / Create Technical Object).
3. Open the Equipment Category value help/filter and observe that all categories are listed.
4. Create a technical object using an equipment category outside the user’s I_EQTYP restriction and observe that creation is allowed.

In the current design, authorization object I_EQTYP is not evaluated in classical GUI transactions, BAPIs, or Web Dynpro apps such as W0029. I_EQTYP is evaluated in specific CDS views used by certain Fiori apps. The equipment category value help reads table T370T without applying I_EQTYP-based filtering.

1. Acknowledge current design: this is missing functionality rather than a defect; W0029 does not perform I_EQTYP checks.
2. For a product enhancement, submit a request via the official influence channel (see “See also” for the note and link).
3. For immediate control, implement a customer enhancement to enforce authorization checks, for example:
4. 1. Restrict the equipment category value help to permitted categories for the user.
5. 2. Add an authorization check before saving creation/changes to block disallowed categories.
6. Do not rely on exit EXIT_SAPMIEQ0_001 for BAPI-based flows; BAPI_EQUI_CREATE and BAPI_EQUI_CHANGE do not process that exit. Implement checks in the calling UI/process layer or a suitable enhancement point.

• refer to: 0000000011 - Would you like to shape & influence future releases of SAP Products?
• refer to: 3667142 - Authorization issue in Technical Object Category in app Find Technical Object
• refer to: PLM Enterprise Asset Management (EAM) community tag

W0029, process technical object, create technical object, equipment category, I_EQTYP, authorization, restriction not working, value help, search help, T370T, CDS view, Fiori app, Web Dynpro, BAPI_EQUI_CREATE, equipment , KBA , EP-PCT-MAN-MW , BP for Maintenance Worker , Problem