BI 7.0 query with 0PLANT no authorization error

Hi all,

We have migrated a BW 3.5 system to BI 7.0 EHP1. We have started to check the queries and we have an authorization error.

Our user ZTESTBW01 only can access two countries from our customer, so it has assigned two different roles:

- ZCOUNTRY1

-ZCOUNTRY2

Inside each role we have the object S_RS_AUTH with one value each:

- ZBW1

-ZBW2

Each authorization value has authorization values for characteristics 0COMP_CODE, 0SALESORG and 0PLANT correspondent to the two countries.

When we execute the query in RSECADMIN transaction with the user with the two roles assigned, we get the 'No authorization' error. (the query only asks for the calendar month and the company code and sales organization)

The log shows us these:

/***********************************************************************************************************************************

Following Set Is Checked  Comparison with Following Authorized Set  Result  Remaining Set 

Characteristic  Content in SQL Format 

0PLANT

0SALESORG

0TCAACTVT

0COMP_CODE

0COMP_CODE = '5200'

AND 0PLANT IN ('#','5121','5122','5223')

AND 0SALESORG = '5200'

AND 0TCAACTVT = '03'

Characteristic  Content in SQL Format 

0COMP_CODE  I EQ #

I EQ 5200

I EQ :

0PLANT  I EQ 5223

I EQ :

0SALESORG  I EQ #

I EQ 5200

I EQ :

0TCAACTVT  I EQ 02

I EQ 03

Partially or Fully Authorized (Intersection)   Characteristic  Content in SQL Format 

0PLANT

0SALESORG

0TCAACTVT

0COMP_CODE

0COMP_CODE = '5200'

AND 0PLANT IN ('#','5121','5122')

AND 0SALESORG = '5200'

AND 0TCAACTVT = '03'

Value selection partially authorized. Check of remainder at end

Following Set Is Checked  Comparison with Following Authorized Set  Result  Remaining Set 

Characteristic  Content in SQL Format 

0PLANT

0SALESORG

0TCAACTVT

0COMP_CODE

0COMP_CODE = '5200'

AND 0PLANT IN ('#','5121','5122')

AND 0SALESORG = '5200'

AND 0TCAACTVT = '03'

Characteristic  Content in SQL Format 

0COMP_CODE  I EQ #

I EQ 5200

I EQ :

0PLANT  I EQ 5223

I EQ :

0SALESORG  I EQ #

I EQ 5200

I EQ :

0TCAACTVT  I EQ 02

I EQ 03

Not Authorized  

Following Set Is Checked  Comparison with Following Authorized Set  Result  Remaining Set 

Characteristic  Content in SQL Format 

0PLANT

0SALESORG

0TCAACTVT

0COMP_CODE

0COMP_CODE = '5200'

AND 0PLANT IN ('#','5121','5122')

AND 0SALESORG = '5200'

AND 0TCAACTVT = '03'

Characteristic  Content in SQL Format 

0COMP_CODE  I EQ #

I EQ 5100

I EQ :

0PLANT  I EQ #

I EQ 5121

I EQ 5122

I EQ :

0SALESORG  I EQ #

I EQ 5100

I EQ :

0TCAACTVT  I EQ 02

I EQ 03

Not Authorized   

All Authorizations Tested

  Message EYE007: You do not have sufficient authorization  

  No Sufficient Authorization for This Subselection (SUBNR)  

Following CHANMIDs Are Affected:

102 ( 0COMP_CODE )

38 ( 0PLANT )

37 ( 0SALESORG )

  Authorization Check Complete  

/******************************************************************************************************************

Do you have any idea of why is it making the intersection of values this way??

Thank you!!