I am facing security issue when assigning multiple member access profiles. Here is the scenario
Entity Dim:
-
Worldwide1 - Level1
Sales - Level 2
SalesUS - Level 3
SalesUSNeast - Base level
SalesUSNcentral - Base level
MbrProfile1:
-
Read Only Category ACTUAL
Read Only Category BUDGET
Read Only Category FORECAST
Read Only Entity Worldwide1
MbrProfile2:
-
Read Only Category ACTUAL
Read & Write Category BUDGET
Read & Write Category FORECAST
Read Only Entity SalesUSNeast
I assigned these two member access profiles to a team called SalesUSNeastPL and assigned this team to a user USER01. This user id is not part of any other team.
With this security profile, the user USER01 is able to send data to all entities for BUDGET and FORECAST categories and not for ACTUAL. I expected this user to send data only to SalesUSNeast for BUDGET and FORECAST categories. It does not stop sending value to all other entities for BUDGET and FORECAST. ACTUAL category is protected with this profile.
This happens in BPC 5.1 SP7 & SP8. Can any one explain why this happens and what is the remedy? Thanks for your help.