Hi experts,
This is a ECC6 security issue.
A user came to me asking for a transaction (YFP8). I assigned the transaction to the user by adding it to his composite role.
User got the transaction, but after trying to use it, SU53 suggested that user is missing the following :
Auth. obj. : F_BKPF_BUK
ACTVT : 03
BURKS : COSC
Here's where the issue comes to life.
I assigned the missing object via SU24 by linking it to the transaction YFP8 directly and also added the BURKS value from the roles authorization tab.
After doing so, I generated the roles of the user in expert mode.
Did an SUIM for testing but for some reason, it does not find a role with the criteria I just added.
Can someone tell me what I'm doing wrong?
PS: User comparison & Text comparison has been already tried without success
Here are some screenshots.
Best Regards,
Ashod