Symptoms
In version 9.2.11, users assigned as backups may experience limited access when trying to open reconciliations in editable mode without first delegating the account to themselves. This behavior affects steps in the reconciliation approval process and may conflict with internal controls (e.g., four-eye principle).
Cause
Current Behavior
When an account is delegated via the BSC workbench:
-
It becomes editable for both the original user and the delegate.
-
This may bypass intended control steps.
steps to reproduce:
-
In Step 1, backups should be able to edit reconciliations without delegating the account, but they currently see it in Read-Only mode.
-
In Step 2, only the main assignee has edit access. Backups must delegate the account to themselves to gain edit access.
-
Users who complete Step 1 should not be able to delegate the same account for Step 2, as it violates the control process.
Workaround
Avoid using the Auditor role as a Reviewer or Approver — auditors have read-only access by design.
Affected version
RMJ 9.2.11
Resolution
This has been resolved in 2024.1 and more enhancement on this will be added on 2025.1
Reference
ROSO-15503
Comments
0 comments
Please sign in to leave a comment.