Skip to Content
avatar image
Former Member

Read-Only user is able to update BP Master Data

Hi All,

We have a user with "Read-Only" access to BP Master Data. When I logged on to that user's account, the BP Master Data fields are greyed off / disabled. However, that read-only user appears in the change logs of a few BP Master Data. The fields that had been updated are foreign name, default sales employee and account balance. I had tested if I can edit the BP Master field while logged in as read-only user by getting authorization from another user (the small screen that pops out where you enter another user's ID and password to authorize the change), but it is not possible. Any ideas how this user was able to edit those BP Master Data?

Thanks!

Best regards,

Rachel

Add comment
10|10000 characters needed characters exceeded

  • Former Member

    FYI, the change log in General Authorization shows this user's rights was last edited on June 2017. The BP Master change log shows the read-only user has edited some fields this March.

  • Former Member

    *I meant March 2018

  • Get RSS Feed

1 Answer

  • Mar 28 at 06:28 AM

    Hi Rachel,

    There are a couple of possibilities:

    • As there is no history of the user rights table, it is possible that the user had full rights on BP Master Data at the time the changes were made.
    • "Spoofing". The change log shows the current name assigned to the user code with which the changes were made. Meaning that the change may have been made by another user code that did have full rights, that currently has the same or very similar name as the read-only user. Please realize that the system sees 'John Smith' and 'John Smith' as two different names, even though to the naked eye they look to be the same.

    Regards,

    Johan

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Hi Johan,

      As per SAP, this is documented in SAP Note 2051389. There is a bug in the change log. When user manually closes or cancels an SO, the BP Master Data change log gets updated with that user's ID. Hence, in our case, the user with read-only authorization to BP Master is appearing in the change logs.

      Thank you.

      Best regards,

      Rachel