SAP Knowledge Base Article - Public

2921817 - User can Create New Account Even Though the User has No Read or Write Access to Account Management and Business Partners

Symptom

User XYZ has no access rights to work center CRM_ACCOUNTMANAGEMENT and BPM_BUSINESSPARTNERDATA but the user can still create a new account via a New Sales Order.

Environment

SAP Business ByDesign

Reproducing the Issue

  1. Go to the Application and User Management work center.
  2. Select the Business Users view.
  3. Select User XYZ (XYZ represents the User ID)
  4. Click on Edit -> Access Rights
  5. Go to the Work Center and View Assignment tab

You can see that the user has no access to CRM_ACCOUNTMANAGEMENT, BPM_BUSINESSPARTNERDATA

  1. Go to the Sales Orders work center.
  2. Common Tasks: New Sales Order
  3. In the New Sales Order window click on the New -> Corporate Account button beside the Account Name field.
  4. Enter the respective data and click Save.

A new corporate account is created successfully.

Cause

The reason why the user can still create an account is due to the fact that the user has read and write access to all or some of the Work Center Views:

BPM_CUSTOMERS

BPM_SUPPLIER_HIER

BPM_HIGHVOLUMEACCOUNTS

BPM_CUSTOMERS

BPM_BUSINESSPARTNERS

BPM_ACCOUNTS

BPM_ACCOUNTHIER

Resolution

You need to restrict or remove also access to the mentioned Work Center Views for this user. The New button for the Account creation in the Sales Order will then be disabled.

Keywords

Access; Restriction; Read Access; Write Access; Account; Business Partner; Customer; Account , KBA , AP-BP-CUS , BusinessByDesign: Customer , Problem

Product

SAP Business ByDesign 1808 ; SAP Business ByDesign 1905 ; SAP Business ByDesign 2002 ; SAP Business ByDesign 2005 ; SAP Business ByDesign 2008