You have set read access restrictions for a specific sales organization for the SAP_BR_CUSTOMER_SRVC_MGR role.
You expect to see only the services orders for the restricted sales organization in the Manage Service Orders app. However, along with the service orders for this sales organization, you also see the service orders for which the user who is currently logged in is the responsible employee.
"Image/data in this document is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental."
SAP S/4HANA Cloud.
Reproducing the Issue
1. Open the Maintain Business Roles app and make sure that the read access for SAP_BR_CUSTOMER_SRVC_MGR is restricted to sales organization 1710.
With this restriction, you can only see the service orders created for this sales organization.
2. Go to Maintain Business Users app.
Assign the business role with the restricted read access to the respective business user.
3. Log in as the user with the assigned read access restriction and open the Manage Service Orders app.
You will see all services orders created for sales organization 1710 as well as the service orders, for which the logged-in user is the responsible employee, irrespective of the sales organization.
This is an expected behavior for access restrictions.
The logged-in user who is the employee responsible for a Service Order should be able to view and process this service order.
The list will display all the service orders for which the logged-in user is the employee responsible along with orders that satisfy the restriction criteria.
SAP_BR_CUSTOMER_SRVC_MGR, Read Access, restricted, restriction, sales organization, sales org, CUSTOMER_SRVC_MGR, service orders, manage service orders, responsible employee, restriction type, service order, employee responsible , KBA , CRM-S4-SRV-SVO-FIO , S4CRM: Service Order Fiori-UI , Problem