Procurement - EBS (MOSC)

MOSC Banner

Why can a non-authorized user approve a PO using email from an authorized user

edited Jan 27, 2016 3:16AM in Procurement - EBS (MOSC) 7 commentsAnswered

We just noticed the following scenario.

1)  User A enters a PO and a notifcation is sent to user B who is authorized in our PO Hierarchy to approve PO's from user A.

2)  User B receives the email notification and sends it on (via Mocrosft Outlook, not Oracle) to user C.

3)  User C does not have any Purchasing responsibility and is not even in our PO Hierarchy,

4)  But when user C opens the document attached to the email, it takes him to an Oracle EBS login page, where user C logs in as user C.

5)  The PO Approval Form is automatically brought up with the Approve, Forward, Reject, etc. buttons for user C.  It says at the top that User C is logged in.

Tagged:

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

EBS Procurement Tags

Instructions for posting

×

1. Select a discussion category from the picklist.


2. Enter a title that clearly identifies the subject of your question.


3. In the body, insert detailed information, including Oracle product and version.


Please abide by the Oracle Community guidelines and refrain from posting any customer or personally identifiable information (PI/CI).


Cloud / Fusion customers - Our Cloud community has moved! Please go to Cloud Customer Connect .


New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center