Hello,
If I understood correctly: a user with no structural profile assigned in T77UA is getting failed structural authorization checks while the entry SAP* ALL in T77UA is unmodified (checked the dates and exclusion flag?)
This would indicate that the system either finds a valid structural profile for the user or fails to throw the proper exception when not finding it.
Possible causes could be:
- Active implementation of BAdI HRBAS00_GET_PROFL (either finding and assigning another profile or not throwing the proper exception when none are found)
- Active implementation of BadI HRBAS00_STRUAUTH
- Old index data in table INDX (in case the user used to be in T77UU but the program to update the index table hasn't ran since he/she got removed)
I suggest you run program RHAUTH00 (tcode RE_RHAUTH00) for this user to have a look at what's in their structural authorization buffer and where it is coming from.
Kind regards,
Brent