Can anybody help me with the following? We have the following 2 requirements: 1. Limit the access to transactional data based on the assigned department and children of the user 2. Limit access to the P&L report data based on a selected set of departments of those children of the user. To achieve this we thought about assigning an overall department to the user and creating a custom role with department access to "own and subordinate". This works like required but the problem we have is the P&L report. We can't seem to limit this report without hardcoding the departments in the reports and since we have a multitude of combinations of departments that isn't really an option.