https://community.sap.com/t5/application-development-and-automation-discussions/basic-security-question/m-p/3566443#M858283 <HTML><HEAD></HEAD><BODY><P>Authorisation sets are additive.</P><P></P><P>SAP is looking for M_BEST_BSA, actvt=04 and it doesn't care where it gets it from as long as the check is satisfied.</P><P></P><P>M_BEST_BSA, actvt=04 &amp; M_BEST_BSA, actvt=03 (and their respective doc types) will both be in the user buffer and available for all checks against those value sets.</P><P></P><P>Without customisation you will not be able to provide this restriction unless you remove actvt=04</P></BODY></HTML> Wed, 19 Mar 2008 11:53:47 GMT Former Member 2008-03-19T11:53:47Z https://community.sap.com/t5/application-development-and-automation-discussions/basic-security-question/m-p/3566442#M858282 <HTML><HEAD></HEAD><BODY><P>Tcode - ME21N</P><P>Object - M_BEST_BSA</P><P>Activity - 04(Print)</P><P></P><P>Tcode - ME9F</P><P>Object - M_BEST_BSA</P><P>Activity - 03(Display)</P><P></P><P></P><P>Now, one user has both these Tcodes through different Roles.</P><P>the User is able to Print(Activity 04) using Tcode ME9F.</P><P>But he should only have Activity 03 for ME9F.</P><P></P><P>Why is this happening?</P><P></P><P>Please help me if I can restrict ME9F to display only.</P><P></P><P>Thanks.</P></BODY></HTML> Wed, 19 Mar 2008 11:39:51 GMT https://community.sap.com/t5/application-development-and-automation-discussions/basic-security-question/m-p/3566442#M858282 former_member759680 2008-03-19T11:39:51Z https://community.sap.com/t5/application-development-and-automation-discussions/basic-security-question/m-p/3566443#M858283 <HTML><HEAD></HEAD><BODY><P>Authorisation sets are additive.</P><P></P><P>SAP is looking for M_BEST_BSA, actvt=04 and it doesn't care where it gets it from as long as the check is satisfied.</P><P></P><P>M_BEST_BSA, actvt=04 &amp; M_BEST_BSA, actvt=03 (and their respective doc types) will both be in the user buffer and available for all checks against those value sets.</P><P></P><P>Without customisation you will not be able to provide this restriction unless you remove actvt=04</P></BODY></HTML> Wed, 19 Mar 2008 11:53:47 GMT https://community.sap.com/t5/application-development-and-automation-discussions/basic-security-question/m-p/3566443#M858283 Former Member 2008-03-19T11:53:47Z https://community.sap.com/t5/application-development-and-automation-discussions/basic-security-question/m-p/3566444#M858284 <HTML><HEAD></HEAD><BODY><P>Thanks everyone</P></BODY></HTML> Wed, 09 Jul 2008 04:32:10 GMT https://community.sap.com/t5/application-development-and-automation-discussions/basic-security-question/m-p/3566444#M858284 former_member759680 2008-07-09T04:32:10Z