Define Access Restrictions

When creating your data mapping definition, you can optionally add access restrictions to this definition.

You can define whether a particular user has access to a mapping definition or not, by restricting access to this definition with one or several specific dimension values. Once the restriction set, the application compares these dimension values to the global parameters of the user. If the global parameters of the user are included in the access restrictions of the definition, the definition is visible to the user. Access restrictions defined in mapping definitions also apply to jobs based on these definitions.

Access restrictions can be defined for the following dimensions:

Consolidation Group
Consolidation Unit
Version
Consolidation Chart of Accounts

Only users with the SAP_GRDC_DDM_EDIT_RESTRICTIONS role are allowed to set access restrictions. The restrictions defined never apply to this user, whatever their global parameters are. If you don't have the DDM_EDIT_RESTRICTIONS role, and don't specify a consolidation unit in the Set Global Parameters app, you can view only data mapping definitions with access restrictions aligned with your authorized consolidation units, as defined within SAP S/4HANA security settings.

The following examples illustrate access restrictions:

User's Global Parameters
User	Cons. Group	Cons. Unit	Version	Fiscal Year	Period	Cons. COA
User1			V1	2010	1	C1
User2		Germany	V2	2010	1	C2
User3	CG1		V2	2010	2	C3

Data Mapping Definition Access Restrictions
Data Mapping Definition	Cons. Group	Cons. Unit	Version	Cons. COA
DM1			V1, V2	C1, C3
DM2		Germany	V2	C2, C3
DM3	CG1		V3, V4

Which definition is visible to which user
	DM1	DM2	DM3
User1	Visible	Not visible (V1 is not a subset of V2) (C1 is not a subset of C2, C3)	Not visible (V1 is not a subset of V3, V4)
User2	Not visible (C2 is not a subset of C1, C3)	Visible	Not visible (V2 is not a subset of V3, V4)
User3	Visible	Visible	Not visible (V2 is not a subset of V3, V4)