SAP Knowledge Base Article - Public

2673666 - Cannot Access Document with Restriction Rule 1

Symptom

You have maintained access restriction with access context 1016 and restriction rule 1  (Access based on the employee, territory assignment, and involvement of employees reporting to user in organizational unit (including sub-units)) for a document for the user ABC (ABC represents the user ID), but the user is not able to access any of the documents that belong to the organizational unit that he is assigned.

Environment

SAP Cloud for Customer

Reproducing the Issue

As an example, in this document it will be considered that the restriction is used for accounts.

  1. Login as user ABC.
  2. Go to the Customers work center.
  3. Go to the Accounts view.
  4. Search for the account XXX (XXX represents the account ID that you expect to see with restriction rule 1).
  5. The user ABC cannot access the account XXX.

Cause

The restriction rule 1 is used for managers and the user ABC is not the manager of the organizational unit that he is assigned.

Resolution

This is the expected system behavior.

For employees that are not managers and need to access documents assigned to other employees that are in the same organizational unit than them, use the restriction rule 10.

Keywords

KBA , LOD-CRM-ACC , Account , SRD-CC-IAM , Identity & Access Management , How To

Product

SAP Cloud for Customer 1805 ; SAP Cloud for Customer 1808 ; SAP Cloud for Customer 1811