cancel
Showing results for 
Search instead for 
Did you mean: 

How to setup IBP Business Role with restrictions to READ ONLY for model configuration - 2305

loricurtis
Discoverer
0 Kudos
771

Greetings,

We are contracting consultants to help with an implementation and want them to be able to READ ONLY our model configuration (key figures, attributes, planning areas), but not make any changes to config in any planning area.

I set up a role of TOOL_ADMIN with all necessary "non-config" catalogs and planned to combine this with either CONFG_DISPLAY or CONFG_CHANGE. WRITE set to no access in CONFG_DISPLAY but this still allows change.

Is it possible yet to add a restriction with SAP_IBP_BC_PLANMODEL_CF_PC?

Please recommend design/restrictions with an example if possible.

Thanks!

Accepted Solutions (0)

Answers (1)

Answers (1)

0 Kudos

@loricurtis follow these steps:

  1. Log in to the SAP IBP application with an account that has administrative privileges.
  2. Navigate to the "Business Roles" section. This can typically be found in the administration or configuration area of the application.
  3. Create a new Business Role specifically for model configuration access restriction. Give it a meaningful name, such as "Model Configuration Read-Only."
  4. Assign the relevant permissions and restrictions to the Business Role. In this case, you want to limit the access to read-only for model configuration.
    • Disable or remove any permissions related to modifying or creating models, such as creating new planning areas or modifying existing ones.
    • Enable the necessary permissions for reading or viewing model configuration settings, such as viewing planning areas, key figures, or attributes.
    • Ensure that the user assigned this Business Role cannot modify or delete any existing configurations within the model.
  5. Save the changes to the Business Role.
  6. Assign the Business Role to the appropriate users or user groups. This can be done by selecting the user or user group and assigning the "Model Configuration Read-Only" Business Role to them.
  7. Verify the access restrictions by logging in as a user assigned the "Model Configuration Read-Only" Business Role and navigating to the model configuration area. Confirm that the user can only view and cannot modify any configuration settings.

By following these steps, you can set up an IBP Business Role with read-only access for model configuration, ensuring that users assigned this role can only view the configurations without the ability to make changes.