I am a security administrator at my company and I have a request to provide certain developers with the ability to invalidate the HTTP Server cache in our BI development system. Since I am also a Basis administrator I can do this through transaction SMICM, but I do not want to provide them with that tcode. I tried an Authorization trace to see what is checked when invalidating the cache, but the trace came up empty so I assume that the system figures if I got that far there was nothing else to check. I'm interested in knowing if there is a function module that is called when the action is clicked that I might be able to secure and allow the developers to use that method of addressing their need. If anyone has any ideas on this, I would appreciate your response.