Question or Problem
There are failed authorization checks in SU53 for object "S_OC_ROLE":
Causes
This failed authorization check is caused by FM SO_INBOX_COUNTER_READ.
This FM is called by ECTR to check if there are new items in the user office inbox.
The call stack looks like that:
/DSCSAG/UPD_READ2 --> SO_INBOX_COUNTER_READ --> CHECK_USER_ROLE(SAPFSSO3)
authority-check object 'S_OC_ROLE' "check for administrator
id 'OFFADMI'
field administrator.
if sy-subrc eq 0.
move role_admin to role.
...
authority-check object 'S_OC_FOLCR'
id 'SECTION'
field 'M'.
if sy-subrc = ok.
move on to user_data-crfcl.
Known Errors and Solutions
This behavior is not an error, it works as intended. Just ignore these failed authorization checks, they don't do any harm.
The system determines whether the user is an administrator or a normal user. Therefore, an incorrect check only means that user may work in the Business Workplace as a normal user.
Change refresh interval of ECTR user office inbox
Change the refresh value to 10 minutes = 600000 Milliseconds
default.txt
# Inbox autorefresh
# Defines the refresh interval in which ECTR checks for new mails or workflows in the SAP inbox
# Attention: The defined interval time must be higher than the interval of "plm.observer.idleTime".
# plm.observer.read.inbox.messages.interval = <Milliseconds>
plm.observer.read.inbox.messages.interval=600000
Additional information
The FM SO_INBOX_COUNTER_READ belongs to component BC-SRV-COM.
See Also
Read suggested related topics:
- 552127 - FAQ: SAPoffice - Authorizations