I am currently facing an authorisations issue with transaction BBPMAININT. Our SRM 5 system will be shared by many countries and we decentralise vendor maintenance.
Currently we have only one location that is live and the project for a number of locations is on going.
When testing the roles for the the project sites i noticed that we cannot prevent one site from maintaining the data of another site in tcode BBPMAININT. I performed an authorisation trace and it appears there is no authorisation object that is checked that allows control on P Org level.
Has anyone experienced this issue before and if so, how did you resolve it?
Thanks,
Mark