HI Experts,
I am implementing ACE in our system for a scenario of MDF-Initiative.
I have created test users with only display authorization.
Now i am applying ACE for these users and giving them full access using action ID ACT_GRP_FULL. After activating the workpackage and rights, all the three tables *ACL ,*UCT and *GRP are filled.
The runtime analysis also shows that these users have full rights, However when I log in to Web UI and try to change or delete the object ( Initiatives ) the system throws me an error message that I am not authorized to change/delete.
Am I doing anything wrong in my approach ? Do ACE rights overwrite PFCG authorizations ?
Thanks & Regards,
Ameet Jha
