Skip to Content
0
Jun 18, 2020 at 03:28 AM

User able to release PO without having access to ME29N or ME28

465 Views

Hi Experts,

Can you please help me with Authorizations concept?

Scenario is: There is a user who doesn't have access to ME29N or ME28 in the system. But is able to release PO. Further to this, he has a role which has M_EINK_FRG auth object with * maintained in release group and release code, also there is authorization to ME23N assigned. It's a Fiori system. We are checking this in pre-prod. User in backend system clicks on workflow for approval of PO, ME29N screen opens and then he releases it. Taken a STAUTHTRACE its clearly showing ME29N and M_EINK_FRG is called and authorisation is successful. While checking in SUIM, user does not have auth to ME29N and ME28. Can I get help?

Thank you,

Komal