Dear experts,
I am currently struggling on the authorization object "CRM_ORD_LP".
I am trying to restrict the access to Service Requests, according to the location of the user (his BP) in the Service Organization (PPOMA_CRM).
Respecting the CRM_ORD check-order, I did desactivate CRM_ORD_OP, CRM_ORD_OE, CRM_ORD_TE... and every single other CRM_ORD. ACTVT and PR_TYPE seem to be correctly check: if I remove the creation right (01) to a user, he can't create the Service Request anymore.
The problem I am facing is that the field "CHECK_LEV" isn't correctly checked: if I fill in "*", I can see every single Service Request, but if I fill any other value, I can't see any Service Request.
Correct me if I am wrong, but if I mention "B" as the value of CHECK_LEV, I should only see Service requests assigned to people under the Service Organization of the user owning the CRM_ORD_LP object.
Thanks in advance for the help, and feel free to ask if you feel some information is missing.
Regards,
Flavien