Procurement of production goods and services has been the subject of automation for the past decade. Retailers have implemented supply chain management (SCM) systems in the 1960s. SCM applications have expanded the scope of traditional SCM systems as the advent of Internet enables enterprises to perform their business transactions ubiquitously. That is, e-SCM (electronic-SCM) eliminates the constraints of time and distance in operating a business, managing the cooperation of system components in a supply chain. Access control mechanisms in e-SCM are one of important security concerns to enable each system component to access sensitive information in a secure manner. In this paper, we propose a consolidated access control mechanism for e-SCM. This mechanism ensures that system components in e-SCM systems can access resources based on their role information.