Re: [sap-security] Limiting access to old posting documents
Posted by
Admin at
|
Share this post:
|
|
0 Comments
 | Posted by henrikmadsen2 (GRC Consultant ) on Feb 28 at 5:31 PM |  Mark as helpful |
Ah, sorry - didn't catch the "view" part :-)
There's nothing you can do from an authorisation point of view for viewing
old data. There is no risk involved, so why would there be a control?
On 1 March 2010 06:23, Charles Braswell via sap-security <
sap-security@groups.ittoolbox.com> wrote:
> Posted by Charles Braswell
> on Feb 28 at 2:28 PM
>
> You could create a validation rule that checked for the fiscal year and
> the user id and if the fiscal year was less than 2010 and the user id was
> not one of the users that is allowed to view the documents, you could
> gererate an error message that would not allow the user to process/view the
> document.
>
> ---------------Original Message---------------
> From: AndreStone
> Sent: Saturday, February 27, 2010 10:19 AM
> Subject: Limiting access to old posting documents
>
> > I would like to restrict (using authorization) access to view old posting
> documents created before 2010. All organization data (company code, chart of
> accounts) were not changed, so there is no option to use common know
> authorization objects... also I could not archive all of the documents, as
> some users still need easy access to them. Any input really appreciated.
__.____._ There's nothing you can do from an authorisation point of view for viewing
old data. There is no risk involved, so why would there be a control?
On 1 March 2010 06:23, Charles Braswell via sap-security <
sap-security@groups.ittoolbox.com> wrote:
> Posted by Charles Braswell
> on Feb 28 at 2:28 PM
>
> You could create a validation rule that checked for the fiscal year and
> the user id and if the fiscal year was less than 2010 and the user id was
> not one of the users that is allowed to view the documents, you could
> gererate an error message that would not allow the user to process/view the
> document.
>
> ---------------Original Message---------------
> From: AndreStone
> Sent: Saturday, February 27, 2010 10:19 AM
> Subject: Limiting access to old posting documents
>
> > I would like to restrict (using authorization) access to view old posting
> documents created before 2010. All organization data (company code, chart of
> accounts) were not changed, so there is no option to use common know
> authorization objects... also I could not archive all of the documents, as
> some users still need easy access to them. Any input really appreciated.
Copyright © 2010 Toolbox.com and message author.
Toolbox.com 4343 N. Scottsdale Road Suite 280, Scottsdale, AZ 85251
Toolbox.com 4343 N. Scottsdale Road Suite 280, Scottsdale, AZ 85251
henrikmadsen2SAP Security Helper
Posted helpful replies on 5 threads in a group to earn a Bronze Achievement
Related Content
In the Spotlight
White Papers
In the Spotlight
Earn Recognition for Your Contributions at Toolbox for IT. Gain Points for Community Achievements
View this thread online
Manage group e-mails
Create an FAQ on this topic
Tell us what you think
Unsubscribe from discussion
Manage group e-mails
Create an FAQ on this topic
Tell us what you think
Unsubscribe from discussion
