Re: [sap-security] Customer Master: How to limit access for users from accessing other companies' customer master data ?
Posted by
Admin at
Share this post:
|
0 Comments
| Posted by anjan.pandey on May 21 at 1:11 AM | |
Hi
you can also restrict the access based on sales organisation along with
company codes through object V_KNA1_VKO. Sales organisation can be
restricted through $VKORG.
Thanks.
Anjan Pandey
On Thu, May 20, 2010 at 10:22 PM, Sonia via sap-security <
sap-security@groups.ittoolbox.com> wrote:
> Posted by Sonia(Sap Bas and Security Design Consultant)
> on May 20 at 12:50 PM
> Hi,
>
> You can have master / derived role concept. In derived role you can
> restrict
> on org levels i.e company code.
>
> Thank you,
> Sonia
> On Thu, May 20, 2010 at 2:33 AM, jaya.yanto via sap-security <
> sap-security@groups.ittoolbox.com> wrote:
>
> > Posted by jaya.yanto
> > on May 20 at 2:34 AM
> > Dear Experts,
> >
> > Our system (running for 3 years) is divided into 5 company codes.
> >
> > One of the companies, say Company #5, is newly acquired last year;
> whereas
> > Company #1 - #4 are all interco:
> > Company #1 - Procurement of raw materials.
> > Company #2 - Processing raw materials to semi-finished materials.
> > Company #3 - Manufacturing the finished materials.
> > Company #4 - Retail Arm.
> >
> > After the takeover, Company #5 becomes Master Franchisee to Company #4,
> > which means that Company #5 needs to pay a percentage of their total
> sales
> > to Company #4 as a royalty fee.
> >
> > Company #5 operates in Country ABC, whereby Company #4 also has customer
> > base there.
> > During the takeover, the agreement is that for customers in Country ABC;
> > existing customers of Company #4 stays with Company #4, but further
> > development and expansion of customer base in Country ABC will be handled
> by
> > Company #5.
> >
> > This is where the requirement comes. Users of Company #5 are not supposed
>
> > to access even the General Data (address and phone numbers) of customers
> > from Company #4 in Country ABC, and vice versa.
> >
> > As General Data of Customer Master is actually at the Client Level, there
>
> > has been a concern raised that by using transaction XD03 and leaving
> Sales
> > Org. and Company Code fields blank, the users will be able to access
> other
> > companies' customer data.
> >
> > Is there any way where we can limit the access for the users to be able
> to
> > see the customer data of their own company ?
> >
> > Thank you so much for the help and advices.
> > Apology for the long post.
> >
> > Sincerely,
> >
> > Jaya (Singapore)
__.____._ you can also restrict the access based on sales organisation along with
company codes through object V_KNA1_VKO. Sales organisation can be
restricted through $VKORG.
Thanks.
Anjan Pandey
On Thu, May 20, 2010 at 10:22 PM, Sonia via sap-security <
sap-security@groups.ittoolbox.com> wrote:
> Posted by Sonia(Sap Bas and Security Design Consultant)
> on May 20 at 12:50 PM
> Hi,
>
> You can have master / derived role concept. In derived role you can
> restrict
> on org levels i.e company code.
>
> Thank you,
> Sonia
> On Thu, May 20, 2010 at 2:33 AM, jaya.yanto via sap-security <
> sap-security@groups.ittoolbox.com> wrote:
>
> > Posted by jaya.yanto
> > on May 20 at 2:34 AM
> > Dear Experts,
> >
> > Our system (running for 3 years) is divided into 5 company codes.
> >
> > One of the companies, say Company #5, is newly acquired last year;
> whereas
> > Company #1 - #4 are all interco:
> > Company #1 - Procurement of raw materials.
> > Company #2 - Processing raw materials to semi-finished materials.
> > Company #3 - Manufacturing the finished materials.
> > Company #4 - Retail Arm.
> >
> > After the takeover, Company #5 becomes Master Franchisee to Company #4,
> > which means that Company #5 needs to pay a percentage of their total
> sales
> > to Company #4 as a royalty fee.
> >
> > Company #5 operates in Country ABC, whereby Company #4 also has customer
> > base there.
> > During the takeover, the agreement is that for customers in Country ABC;
> > existing customers of Company #4 stays with Company #4, but further
> > development and expansion of customer base in Country ABC will be handled
> by
> > Company #5.
> >
> > This is where the requirement comes. Users of Company #5 are not supposed
>
> > to access even the General Data (address and phone numbers) of customers
> > from Company #4 in Country ABC, and vice versa.
> >
> > As General Data of Customer Master is actually at the Client Level, there
>
> > has been a concern raised that by using transaction XD03 and leaving
> Sales
> > Org. and Company Code fields blank, the users will be able to access
> other
> > companies' customer data.
> >
> > Is there any way where we can limit the access for the users to be able
> to
> > see the customer data of their own company ?
> >
> > Thank you so much for the help and advices.
> > Apology for the long post.
> >
> > Sincerely,
> >
> > Jaya (Singapore)
Copyright © 2010 Toolbox.com and message author.
Toolbox.com 4343 N. Scottsdale Road Suite 280, Scottsdale, AZ 85251
Toolbox.com 4343 N. Scottsdale Road Suite 280, Scottsdale, AZ 85251
Related Content
In the Spotlight
White Papers
In the Spotlight
Your SAP Security is at Risk...Learn How to Stay Protected. Read the free white paper from SenSage
View this thread online
Manage group e-mails
Create an FAQ on this topic
Tell us what you think
Unsubscribe from discussion
Manage group e-mails
Create an FAQ on this topic
Tell us what you think
Unsubscribe from discussion