Hi Antony,
I cannot think of any other authorization object to make your requirement work. I think the solution is creating different roles and assign it to the appropriate people. E.g. an administrator who is sometimes has to correct failed load needs the delete authorization. Someone else does not need the delete authorization. The authorization object S_RS_ICUBE has to be in both roles, only the properties of the Activity field differ (only the administrator role gets the delete authorization).
Best regards,
Sander