Users can see all accounts they are allowed to access from his login, but they are not able to check out any of them.:
They see the following error message: Authorization failed. Your role does not contain the necessary permissions for this action.
Password Authority 220.127.116.11
This is a known issue if the user target accounts are defined in a dynamic target group, and the target group definition contains a filter on Application Type.
The work around is to change the definition of the group and avoid using the Application Type filter.