Apply and enforce authorization

After assigning permissions to employees, you must apply and enforce the authorization levels using the Apply Latest Permissions (tcsec3200m000) session, for the application to consider the assigned permissions. You can apply latest permissions for items, business partners, project, and contract.

Due to performance related factors, the newly created business objects (such as orders, projects, or contracts) are not immediately available for users when the Authorization and Security sessions are accessed. It is recommended that you apply the authorization process, using a job, several times a day. This process ensures that the authorization of the users for the required business objects is generated, and the active permissions are assigned to users in the Employee Document Permissions (tcsec2600m000) and Authorized Projects (tcsec2500m000) sessions.

Example

When a buyer creates a purchase order, all the buyers linked to the same purchase office are authorized to access the purchase order, based on the authorization setup. This is because when a buyer creates an order, another user approves the order. Effectively, this process ensures that other employees do not wait until the Apply Latest Permissions (tcsec3200m000) session is run, to send the order for approval.

Note: 
  • You can run the session from the Authorized Projects (tcsec2500m000) session to help the application evaluate the permissions, when projects are created daily.
  • You can also run the session from the Authorized Procurement Documents (tcsec2505m000)session to help the application evaluate the permissions, when procurement documents are created daily.