Skip to Content
avatar image
Former Member

Hide sensitive attribute data and make the infoobject unavailable to some BEx report writers

How do you set up BW security to not display all of the attributes for users with limited access?  For instance in BW ,0EMPLOYEE has an attribute "ethnic origin", which is sensitive data.  Not all report writers should be allowed to see that attribute about an employee. The employee infoobject is used in many infoproviders, and currently any user can display its attributes and view an employee's ethnic origin. 

I want to make it so some users never see the sensitive fields, while other users can access to all data.  So if a users with restricted access were to build a BEx query designer report, the sensitive attributes for 0EMPLOYE would not even be visisble.  Any ideas?



Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • avatar image
    Former Member
    Apr 25, 2012 at 07:32 AM

    Hi Linda,

    I believe the attribute "ethnic origin" is a display attribute for characteristics 0EMPLOYEE and hence visible to all users with access to the characteristics. I think you should change this attribute to a navigational attribute for 0EMPLOYEE and include the same in the infoproviders as auth relevant. This should allow you to independently restrict the navigational attribute via Analysis authorization or filter the same in query designer.

    Hope this helps


    Message was edited by: Sandipan Choudhury

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Former Member

      Hi Linda,

      I have the same issue now and just wondering if the issue was fixed?

      could you please share your solution? thanks