Question:
Hi fellows,
New to BW authorization, face a problem now, see below for SU53:
Don't understand why i gave '*' for (Owner (Person Responsible) for a Reporting Component), it still failed?
Object S_RS_COMP1 Business Explorer - Components: Enhancements to the Owner
Object class RS Business Information Warehouse
Field Value
Activity
03
Name (ID) of a reporting component
ZNUMDISREPT
Type of a reporting component
REP
Owner (Person Responsible) for a Reporting Component
$USER
Available authorizations for the object in the master record:
Object S_RS_COMP1 Business Explorer - Components: Enhancements to the Owner
Authorization T-BD66000300
Profile T-BD660003
Role ZCBMY_BW_FI_MGR
Field Values
Activity
03
Name (ID) of a reporting component
*
Type of a reporting component
QVW, REP
Owner (Person Responsible) for a Reporting Component
*
Answer:
It may be looking for a variable to pass into the check - although this should normally be satisfied by having a * value in the field - speak to your BW team to see if they are using variables.
Also perform a trace - this should show you what exactly is failing. (can't remember what the transaction is off the top of my head but I'm sure someone will chip in)
Answer:
I bliv u refer to ST01? Yeah, it helps to fix the authorization issue; currently it hits application error and functional consultant is looking into it. We will see what happens after the fix.
Another qn, i have not been able to work on HR authorization, is HR autho similar to BW?
Answer:
I bliv u refer to ST01? Yeah, it helps to fix the authorization issue; currently it hits application error and functional consultant is looking into it. We will see what happens after the fix.
Another qn, i have not been able to work on HR authorization, is HR autho similar to BW?
it's not the same as ST01 in R/3, but gives some useful results.
HR auths are more like standard R/3 (unless you are going into structural auths). They can get a bit complex but are not too bad.
Answer:
Hi Experts,
Another question here, when users executing tcode UPSPL in BW, seems there is no authorization check on organizational levels. If we want to add a check on Company Code, is there a way to do so? I don't think i need to modify UPSPL from SU24.
The BW version here is 3.5.
Please help.
Answer:
If you know what fields are being used to establish org-level restrictions, you can enter those values (eg, BUKRS, PRCTR, WERKS, etc.) in the UST12 table selection in the 'FIELD' field through SM30. If your using PFCG and don't know what fields are being used to restrict organizationally, you could identify the organizational level fields in table AGR_1251 by putting a $* in the first VALUE field in through SE16, this will show you all of the field objects that have an org level parameter in the roles. The UST12 table has fairly equivalent information as AGR_1251, but shows the values that are included in those org-level parameters - in other words, AGR_1251 will identify that $BUKRS (company code) as a one of the org level maintained fields in the role and UST12 will show that the role has companies 0001 and 0002 assigned.
Hope this helps.
_________________
SAPFAN
Answer:
If you are on BW 3.5, SU53 generates complete listing of missing authorizations like in R/3.
_________________
SAPFAN
Answer:
Another question here
If you have another question, start a new topic.
Snowy
_________________
SapFans Moderator
NetWeaver ‘04–SAP Web AS for ORACLE certified
Search: /forums/search.php
SAP Notes: http://service.sap.com/notes
SAP Help: http://help.sap.com
Basic Rules: /forums/viewtopic.php?t=222759