Question:
Hello. We use the 1F object to restrict access to Career and Succession
Planning data. There are some users who are both Career and Succession
Reporting users and who also maintain the Org structure for various
users. These users must be able to display the entire org strcuture
but do not necessarily require the ability to maintain the entire
org structure. However, if these users have a display all structural
authorization that is combined with their 1F structural authorization
that is restricted, the combined access grant the user access to all
1F's. This, of course, is not a desirable situation. Does SAP provide
a way to say "Display all, except..." or "Maintain all except..."?
Context Sensitive Authorization will not work as there is no object
for PLOG.
Thanks a lot-
Answer:
You can upgrade to 4.7 which has context related structural authorizations. There may be even a way to make context related structural authorizations available in 4.6c. You ought to read the OSS notes related to context sensitive authorizations.
I need to dig into my notes and see if there is a way to do this in earlier versions (like 4.6c)
_________________
bwSecurity