Question:
Hi there,
We're on version 4.70 and my question relates to the IS-U Customer Care module.
I've created a 'general access to the CIC' role which includes display transactions except for the 'Create customer contact' (BCT0) transaction.
The user assigned to this role however is able to create notifications.
If they are not in transaction CIC0 and execute transaction IW51 they get the no authorisation error message, but from within the CIC (Customer Interaction Centre) they are able to create notifications.
I've done a trace on executing the notification transaction from within the CIC and the only objects checked are:
S_GUI Act - 61
S_TCODE - CIC0
Has anybody else experienced this problem?
Perhaps I should just log it on the OSS??
Thanks
Lucille
Answer:
Why dont you run SU53 after getting the error and find out the authorization object that was required
Answer:
Hi
The problem isn't that they don't have enough authorisation - it's that they shouldn't be able to execute transaction IW51.
The role doesn't include access to transaction IW51, yet when the user goes into transaction CIC0 (where all the transactions will be executed from), they're able to create notifications.
A recent test has shown that this test user is also able to display a premise. Even though they don't have the transaction in the S_TCODE.
My question is, could this be a 4.7 problem? i.e. authorisation checks are missing.
Does anyone else have this problem on 4.7 / 4.6?
Thanks
Lucille