We are using SAP 4.6c on a single instance. We have one controlling area with multiple companies. We have a problem where a user in one company can have access to the data of other companies. This problem presents itself in FI, CO and MM. We want to resolve the issues by adding authorization controls, but have failed. Is there any solution that you can recommend to solve the issue?
By design CO is controlled by Controlling Area for almost all processing actions. You can control the display and some activities around reporting, budget planning and master data maintenance using the cost center hierarchy. If this hierarchy mirrors your company code structure it may serve your purposes. MM controls are based on plants, purchasing organizations and purchasing groups. Plants are typically set up for one company code so adding all the plants for one company to a user's role may mirror your company code security. FI organizational security is based on company code.
Dig Deeper on SAP security administration
A SearchSAP.com reader wants to know how to grant a user access to cost centers, as well as access to one cost element across all cost centers.
Learn how to stop SAP users from displaying HR table contents in an SAP table without restricting access to an SE16N transaction.
A SearchSAP.com reader who stores user email addresses within the SAP SU01 transaction code and wants to know where to locate the data.
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.