cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Data Access Profiles not Restricting access to Users as per DAP assigned to Users

Go to solution
srihans0523
Explorer

on ‎02-25-2019 8:03 AM

0 Kudos

Dear SAP Gurus,

We have facing issue in Real Time Consolidation Development Project.

Activity user to perform:

Execute; Maintain Consolidation Monitor and Create and Delete Task Sequence from SAP NW Web system.

In a Data access we have restricted write access to

Category: Actual

RTC Entity: 1000

RTC Group: G_1000

When user try to execute the consolidation activities from consolidation monitor user can able to view and execute for all the entities and all the RTC Groups. I mean assigned Data Access Profile is not restricting the user to RTC Entity 1000 and RTC Group G_1000

Below listed authorization objects assigned to the user.

RSBPC_DAPRSBPC_ENVMRSBPC_IDRSBPC_LOHERSBPC_MODLRSBPC_MONRSBPC_RULS_RS_AUTHS_RS_HIERS_RS_IOBJS_RS_PLSE

Thanks and regards,

Shekher D

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

damovand
Product and Topic Expert
Product and Topic Expert
‎02-26-2019 4:01 PM
0 Kudos

Hello Shekher,

I recommend reporting this to BPC support for a full investigation.

Best Regards.

Leila L.

Show replies
Show replies

Answers (2)

Answers (2)

damovand
Product and Topic Expert
Product and Topic Expert
‎02-25-2019 3:22 PM
0 Kudos

Hello,

If I understand correctly group is your secured dimension and you have defined one DAP that provides write access to just one group. Please confirm my understanding. Please note that if you have multiple DAPs assigned to the user then the least restrictive will be applied.

As far as I know DAP overrides all authorization objects as per this blog BPC 10.1 embedded: How DAPs determine Authorizations for HCPRs . Therefore, if you are experiencing anything different I recommend reporting this to BPC support.

Best Regards,

Leila L.

Show replies
Show replies
srihans0523
Explorer
‎02-26-2019 6:55 AM
0 Kudos

Hi Leila L,

Thank you so much for your response.

Secured Dimensions are Category; RTC Entity and RTC Group.

Write access provided to:

Category: Actual

RTC Entity: 1000

RTC Group: G_1000

Only this Data Access Profile has been assigned to test user.

Now user is able to view and post the data to all RTC Entities and all RTC Groups.

Thanks and regards,

Shekher D

srihans0523
Explorer
‎02-25-2019 2:31 PM
0 Kudos

Hi SAP Gurus,

Please let me know in case any authorization objects are missing to control based on Data Access Profile assignment.

Thanks,

Shekher D

Show replies
Show replies
Ask a Question