Skip to Content

SAP HCM - Payroll Officer from new Personnel Area can see past salary in old Personnel Area.

Hi all experts,

I have two Single Roles restricting the view of Payroll Officer on Employee Data, using the Authorization Object (P_ORGIN).

- Role_2000 will be used for Personnel Area 2000.

- Role_2001 will be used for Personnel Area 2001.

With these role, Payroll Officer from Personnel Area 2000 cannot see any employee in Personnel Area 2001 and vice versa.

However, when an employee transferred from 2000 to 2001, the Payroll Officer in 2001 can see all the data of this employee, even the past (when working in 2000), and this violate the Confidential Protocol of customer.

Does anyone have the idea how can we restrict the permission in this case? Means that Payroll Officer in Personnel Area 2001 should only read the data from the date that the employee move to 2001.

Thank you very much,

Hieu

Add a comment
10|10000 characters needed characters exceeded

Related questions

1 Answer

  • Posted on Aug 04, 2020 at 08:00 AM

    Hello Hieu - I recommend running an STAUTHTRACE on Payroll Officer in 2001 to see what authorization objects are available to you to restrict. It could be one of the roles has a display all on personnel area. But the security trace will tell you the specific details for sure

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.