Hi friends,

I want to restrict a user that he should not use few session. e.g.

session "Order (line) blocking" (tdsls4520m000).

The user has following authorization

FULLDB: Full DB access
FULLSESS: Full session access
DEFAULT: Startup Baan
TOOLS: full baan tools access

The user is a normal user. How should I define the a role that the specific user can only see the information but not authorized to unblock a blocked sales orders, but other user can unblock any Sales order.

thanks in advance
Mahmood

Hi,

I could think of two ways:

1) In the "Session Authorization by Sessions", for the required session, set the Authorization Groups to either Display or Print/Display, whichever you want.

[Or]

2) In the "Table Authorizations by Table", for the "Order (line) Blocking" (tdsls420) table, set the Authorization Indicator to "Read".

In either way, you cannot have full sessions access or full database access to the user.

Special Note: Special attention when using sub-roles. Authorizations on a sub-level are overruled by authorizations on a higher level. Suppose you enter Read-authorization for a maintain session in Baan Order Management at Level B. But at Level A you have given the user full authorization for package TD, the user will still be able to modify records in the maintain session in Baan Order Management.