The SBE checks that the user in the SumbitOrderRequest header belongs to the role defined in "SBEMasterController.config" file under "OHSBERole" config value. This means that usually user must be into YOURDOMAIN\Requestors@CSF_SBE group. One typical configuration
