Data security policy aggregation between two different roles — Cloud Customer Connect
You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

Data security policy aggregation between two different roles

in Applications Security 4 comments

Summary:

Hi,

We’re facing a security policy issue where a user is assigned both the Accounts Payable Manager and Accounts Receivable Manager roles, each associated with a different Business Unit.

The data access of this user looks like this:

Accounts payable manager, Business unit = X

Accounts receivable manager, Business unit = Y

However, I've noticed that when the user accesses a task like Manage Payables Invoices, he can select both Business Units X and Y.

This appears to be due to a mutual DSP (Data Security Policy) that grants access to both units.

Do you have any suggestions on how we can prevent this from happening?

Tagged:

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!