Hi Mark,

I hope you have posted the question in multiple areas. Please post all the BI related questions in BI forums. However, you can refer all the RSEC* tables. Below are the tables that stores analysis authorizations information:

RSECHIE - Status of hierarchy authorizations

RSECTXT - Authorization text

RSECVAL - Authorization Value Status

RSECBIAU - Changes to Authorization (Last Changed By]

RSECUSERAUTH - BI Analysis authorization u2013 assignment to users

Change log tables:

RSECUSERAUTH_CL - Assignment of users

RSECHIE_CL - Change log of hierarchy authorizations

RSECTXT_CL - Authorization texts

RSECVAL_CL - Authorization Value Status

Hope this helps!!

Rgds,

Raghu

Hi Mark

Since you are posting in the GRC Forum I'm guessing you want to verify the data produced at permission level for user level reports?

Those reports will give the roles which are creating the SoD issues at user level so that you can concentrate on only those and ignore the rest assigned to the users. Opening AGR_1251 and also AGR_1252 reports for multiple users will probably give you plenty to read but little in value.

If you've run the user level report at action level in RAR then you won't be getting the offending roles.

Please could you confirm the spec/scope of the report you need out of SAP?

Cheers

David