Hi All,

We have created an authorisation object in the system which apply to all BW queries / reports. The  authorisation object restricts a field / infoobject 0COMP_CODE to a particular range of values.

The BW reports in the roles use this field 0COMP_CODE and restricts to an authorization variable which brings in the restrictions applied in the roles.

The above scenario works fine for users currently.

Now there is a new requirement that I need help with.

Suppose there are 10 BW queries assigned in the roles. We now want to remove the authorization variable / restriction from 5 out of the 10 BW queries.

When we do that by simply removing the variable from BW query and run the reports it gives us an authorization error message. I suppose this is because at the role level there is a restiction and at the BW query level there is no authorization variable to pick this.

If we move the 5 queries to a new role where there is no Authorization object applied and the 5 queries don't have an Authorization variable it still gives as an Authorization error.

So now we have the below scenario

Role 1: 5 Queries with Authorization variable and Authorization object restriction

Role 2: 5 Queries with no Authorization variable / Authorization object

Role 2 queries do not work because the same user is assigned Role 1 and Role 2 and the Authorization restrictions get pulled in from there !

Any suggestions on how to proceed here and make Role 2 work without any restrctions?

Thank you.