Authorisation object for TECO in CO02
Hi
I have a scenario , where users should not do the TECO when they complete the production order . For that I have to remove the authorisation for the users.
But in month's last working day , after closing the production . I have to do the mass processing of TECO by scheduled background job .
By using the user status and user exit method to control the authorisation for the users , I'm not able mass process the TECO in background.
Is there any other way , we can restrict TECO authorisation to the users .
There is no need to run any debugging to find out authorizations for any transaction code/program/report.
You can just run ST01 trace.
There is no authorization for system status for production order, you'd need to use user-status to indirectly control the system status.
Check my reply in the following thread.
Re: Production order release authorization
Also checkout:
restrict revoking of TECO in CO02 for some users
Similar Messages
-
Authorisation object for "PO text in the material master"
Hi,
My requirement is as below:
"All users can see the Purchase Order Text as usual, but only a few users should be allowed to create / change the PO Long Text.
For other users, the same should appear in display mode only (both in creation & in change mode, MM01 & MM02)."
Please let me know, How to map this.
As per my knowledge thsi is possible only thru authorisation. But I want to know what is the authorisation object for "PO text in the material master" (Pl note that only for PO text in the material master field). we want control on "PO text of material master"
Regards.
ChinnaHi,
The authorisation object is "M_MATE_MAT", pl check
Regards
Merwyn -
Authorisation Object for Payment Block Filed(ZLSPR) in FB02
Hi,
I want to restrict the authorisation to modify the field Payment Block to some of the users only in FB02 Tcode.
How can i achieve it.
My basis team said it can help me if i can give the authorisation Object for the same they can restrict the authorisation object to limited users.
regards
JayaHi Mallikarjun,
The authorisation Object given is related to Excise invoice ? So, please let me know how this would help in restricting modification of payment block filed in FB02?
regards
jaya -
How to create authorisation object for save button please help in abap
how to create authorisation object for save button please help in abap
Hi
In general different users will be given different authorizations based on their role in the orgn.
We create ROLES and assign the Authorization and TCODES for that role, so only that user can have access to those T Codes.
USe SUIM and SU21 T codes for this.
Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction.
If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check.
This means you have to allocate an authorization object in the definition of the transaction.
For example:
program an AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT <authorization object>
ID <authority field 1> FIELD <field value 1>.
ID <authority field 2> FIELD <field value 2>.
ID <authority-field n> FIELD <field value n>.
The OBJECT parameter specifies the authorization object.
The ID parameter specifies an authorization field (in the authorization object).
The FIELD parameter specifies a value for the authorization field.
The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields.
http://help.sap.com/saphelp_nw04s/helpdata/en/52/67167f439b11d1896f0000e8322d00/content.htm
To ensure that a user has the appropriate authorizations when he or she performs an action, users are subject to authorization checks.
Authorization : An authorization enables you to perform a particular activity in the SAP System, based on a set of authorization object field values.
You program the authorization check using the ABAP statement AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT 'S_TRVL_BKS'
ID 'ACTVT' FIELD '02'
ID 'CUSTTYPE' FIELD 'B'.
IF SY-SUBRC <> 0.
MESSAGE E...
ENDIF.
'S_TRVL_BKS' is a auth. object
ID 'ACTVT' FIELD '02' in place 2 you can put 1,2, 3 for change create or display.
The AUTHORITY-CHECK checks whether a user has the appropriate authorization to execute a particular activity.
This Authorization concept is somewhat linked with BASIS people.
As a developer you may not have access to access to SU21 Transaction where you have to define, authorizations, Objects and for nthat object you assign fields and values. Another Tcode is PFCG where you can assign these authrization objects and TCodes for a profile and that profile in turn attached to a particular user.
Take the help of the basis Guy and create and use.
Regards
ANJI -
Authorisation object for Case Management
Hi Gurus.
I need to create authorisation object for Case Management,
SCMG_T_CASE_ATTR-CATEGORY Field,SCMG_CATEGORY element,
I use the tx SU21 and Su20, asigned this object to Role. But no WORK.
In the Su20:
Field Name: ZCATEGORY
Data elelment: SCMG_CATEGORY.
Table Name: SCMGATTR_CATEGO.
In the SU21:
Object: ZCASE
Class: AAAB
Field Name:
ACTVT
ZCATEGORY
When I use tx SCASE, The condition not work.
I use the field name ZCATEGORY because the field name CATEGORY was used by SAP. But for USC_Y_CONT_CATEGORY element
Edited by: Alfredo on Aug 1, 2008 5:39 PMHi Alfredo,
Go to SU24 tcode and see if the transaction SCASE is being check/maintaned to the authorization object ZCASE.
If not then you need to do that so that when you add the tcode SCASE to a role then you will see the authorzation object ZCASE which you have created. You can edit the role and change the authorizations for the field, ZCATEGORY and maintain.
Generate the role and then assign it to the user. I think it must work.
If it doesnot work then as Alex said, you need to go and look where the Authority check statement is placed in the program behind the SCASE tcode.
Hope this helps.
Regards,
Kiran Kandepalli. -
Authorisation object for cost center
Hi all,
I need to know the authorisation object for the field COST CENTER in ME21N(creation of PO) screen. How to find it? Since I am creating roles for users with help of BASIS I need to know it. I need to restrict the values for the cost center field while creating the purchase order.
Thanks in advance.
Regards,
RajHello,
Master Data:
CO: Cost center master (K_CSKS)
CO: Cost center groups (K_CSKS_SET)
CO: Cost element master (K_CSKB)
CO: Cost element groups (K_CSKA_SET)
CO: Activity type master (K_CSLA)
CO: Activity type groups (K_CSLA_SET)
CO: Statistical key figures (K_KA03)
CO: Stat. key figure groups (K_KA03_SET)
Planning:
CO: Version (K_KA09_KVS)
CO: Planner profiles (K_TKA50)
CO: Cost center planning (K_CSKS_PLA)
CO: Cost element planning (K_CSKB_PLA)
CO: Budgeting (K_CSKS_BUD)
Regards
Mahesh Naik -
Authorisation object for controlling te changes to "Delivery completed indi
hi
I want to know the authorisation object for controlling te changes to "Delivery completed indicator" in PO.
I want to give the authorisation to change to certain users only.
Best regards
SarThere is no authorization at field level.
Either the user has authorization to change an order or not. -
Authorisation object for field level
Hi all,
In support desk ,Is there any authorisation object for controlling field level changes such as category or priority by message processors.
BalamuruganHi.
Not that I know of. I was also looking for something like this and could not find anything.
I think there is even no logging if someone makes any changes to those fields. -
How to create authorisation object for report
hi
experts..
hw can u create authorisation object for the custom report.
Thanks& Regards
SpandanaHi,
In general different users will be given different authorizations based on their role in the orgn.
We create ROLES and assign the Authorization and TCODES for that role, so only that user can have access to those T Codes.
USe SUIM and SU21 T codes for this.
Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction.
If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check.
This means you have to allocate an authorization object in the definition of the transaction.
For example:
program an AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT <authorization object>
ID <authority field 1> FIELD <field value 1>.
ID <authority field 2> FIELD <field value 2>.
ID <authority-field n> FIELD <field value n>.
The OBJECT parameter specifies the authorization object.
The ID parameter specifies an authorization field (in the authorization object).
The FIELD parameter specifies a value for the authorization field.
The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields.
http://help.sap.com/saphelp_nw04s/helpdata/en/52/67167f439b11d1896f0000e8322d00/content.htm
To ensure that a user has the appropriate authorizations when he or she performs an action, users are subject to authorization checks.
Authorization : An authorization enables you to perform a particular activity in the SAP System, based on a set of authorization object field values.
You program the authorization check using the ABAP statement AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT 'S_TRVL_BKS'
ID 'ACTVT' FIELD '02'
ID 'CUSTTYPE' FIELD 'B'.
IF SY-SUBRC <> 0.
MESSAGE E...
ENDIF.
'S_TRVL_BKS' is a auth. object
ID 'ACTVT' FIELD '02' in place 2 you can put 1,2, 3 for change create or display.
The AUTHORITY-CHECK checks whether a user has the appropriate authorization to execute a particular activity.
This Authorization concept is somewhat linked with BASIS people.
As a developer you may not have access to access to SU21 Transaction where you have to define, authorizations, Objects and for nthat object you assign fields and values. Another Tcode is PFCG where you can assign these authrization objects and TCodes for a profile and that profile in turn attached to a particular user.
Take the help of the basis Guy and create and use.
Sy-SUBRC values
4 User has no authorization in the SAP System for
such an action. If necessary, change the user
master record.
8 Too many parameters (fields, values). Maximum
allowed is 10.
12 Specified object not maintained in the user
master record.
16 No profile entered in the user master record.
24 The field names of the check call do not match
those of an authorization. Either the
authorization or the call is incorrect.
28 Incorrect structure for user master record.
32 Incorrect structure for user master record.
36 Incorrect structure for user master record.
http://www.sap.ittoolbox.com/groups/technical-functional/sap-basis/please-how-to-create-an-authorization-object-386391 - 78k -
http://www.sap-abaprogram.blogspot.com/2007/11/what-is-use-of-
authorization-checks-to.html - 75k -
www.sapworld.hpg.ig.com.br/download/ab4query.pdf
with thanks,
Abaper. -
Authorisation object for Supplier field in Shopping Cart
Hi Team,
In Shopping Cart Source of Supply tab field Supplier is not getting displayed as it in hidden for some users, sor those users an authorisation object has to be provided to display the Supplier field.
Can you please Suggest me the authorisation object to be used to display Supplier field in Source of Supply tab of Shopping Cart.
Thanks & Regards,
Goutam Kolluru.Question is solved.
Answer can be find in bellow link
Field Supplier is not displaying in Shopping Cart with Std Roles SRM 7.0 -
Authorisation object for Purchase order release codes
Hi,
Can anyone let me know the authorisation object to be used for the PO release codes to be assigned in the ME28 and ME29N for the users.Hi,
Release code and groups detials for the PO authorisation is as follows.
M_EINK_FRG Release Code and Group (Purchasing)
FRGCO Release code
M_EINK_FRG Release Code and Group (Purchasing)
FRGGR Release group
Regards,
Sakthi -
Authorisation Object - for specific functins to restrict access
Hi,
I have to use Authorisation Object in my program to restrict the access by all users.
Only those users with the zcxbilllock security role will be able to perform the functions like 'Lock/Unlock', 'Delete', and 'Recosting' ..
How do I code this.... Can anybody please help.... I would really appreciate...
INCLUDE YFMXBOMCL1.
INCLUDE YFMXBOMO01.
INCLUDE YFMXBOMI01.
INCLUDE YFMXBOMF01.
*-At selection screen
AT SELECTION-SCREEN.
AUTHORITY-CHECK OBJECT 'Z_PP_XBILL'
ID 'ACTVT' FIELD '02'.
*SY-SUBRC = 0.
*IF SY-SUBRC <> 0.
AUTHORITY-CHECK OBJECT 'Z_PP_XBILL'
ID 'ACTVT' FIELD '16'
ID 'ACTVT' FIELD '95'.
IF SY-SUBRC <> 0.
MESSAGE E010(AD) WITH TEXT-A01.
ENDIF.
Here 16 -
>execute
and 95 is unlock.
Thanks a lot in Advance
JayaHi jaya
Evaluate sy-subrc right after authorization object call.
sy-subrc = 0 : user is authorized for the activities defined in authorization object
sy-subrc ! = 0: no authorization.
To understand more about authorization object creation and there usage refre this link.
https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c
Thanks
Vishal Kapoor -
Authorisation object for inspection type
Dear QM consultants,
We are developing one Z program where plant, inspection lot origin and inspection type are main input fields. We want to add authorisation object based on these inputs. I checked for M_BEST_WRK for plant and Q_INSPTYPE for inspection type. Object for plant is working fine but we are unable to restrict based on inspection type since Q_INSPTYPE does not have any activity field associated with it.
Has anybody come across such issue? Whether objects taken by me are correct, if not can anybody guide me what are the authorisation objects to be taken.
Thanks in advance.
Best Regards,
Anand RaoHi
Create your own autherization group with SU21
This will bring better control
Regards
Sujit -
Disable an Authorisation object for Multiple roles.
Hi ,
I need to Disable an authorisation object F_BKPF_BUP for about 345 roles.Is there any way by which we can make mass changes.Doing it for individual role would take a lot of time.kindly advice.
Thanks in advanceHi,
1. Go to SE16 --> table USOBT_C --> put object F_BKPF_BUP in the field "Object" --> execute without restriction. Download the list of TCodes.
Now go to Table AGR_TCODES --> put the list of TCodes (found with above method) in the field "Extended name" as multiple selection --> execute and download the list of roles.
Look up your list of 345 roles with this list. After matching, you need to sort out the TCodes present in this list of roles which is checking the object F_BKPF_BUP.
2. Now go to SU24.. go to option "Authorization Object" and NOT in the Transaction section.
Put the Object and execute.... go to change mode.... check the proposals for the TCodes you sorted at last step of point 1. Make the proposal Do Not Check where ever it is not so.
Move the Workbench Transport through Landscape. Your purpose will be done. But you should also keep in mind if the TCodes are present in other roles besides of your 345, those will become vulnerable.
Regards,
Dipanjan -
Authorisation Object for reporting
I created a Authorisation Object on an Infoobject .The list that comes up for selecting the Infocubes which should be effected by this doesnot show the Cube in which the Infoobject is used.
The list shows various ODS and Cubes and I dont know how they r related to this Authorisation Object.hi,
check if relevant oss note 641614-InfoProvider in RSSM not displayed for authorization object.
the solution support package may out of date, you may try this ?
... You can avoid this problem by using the 1KYFNM field in the authorization object. In this case, all InfoProviders will be always displayed.
Symptom
An InfoProvider is not displayed in transaction RSSM for checking authorization objects. Consequently, the setting that indicates whether this InfoProvider should be checked for the authorization object cannot be changed.
Other terms
Authorization object, InfoProvider, InfoCube, RSSM, check
Reason and Prerequisites
The InfoProvider contains a referencing characteristic, which is authorization-relevant, as a navigation attribute. As a result, the usage is not found as the navigation attribute in the where-used list for the InfoObject in the authorization object and consequently, the InfoProvider is not found either.
You can avoid this problem by using the 1KYFNM field in the authorization object. In this case, all InfoProviders will be always displayed.
In addition, it will also be easier to implement a check on key figures at a later stage because once authorizations exist for an authorization object, no more fields can be added.
Solution
BW3.0B
Import Support Package 15
BW3.1C
Import Support Package 09 for 3.1C
Maybe you are looking for
-
I am deployed to SWA and my 2012 MBP can't identiy my router as one of the network devices. However, my Ipad and Iphone 4 can as of this morning. Now my Ipone is not recognizing the WIFI...any help for a fix would be apreciated.
-
Periodic material requirment in project
Hello Guru's, I need your help in my project requirment :- We are working for construction project were we have an activity for concrete work. now total work involved in this activity is 120m3 and the duration is 12 months. So period wise 10m3 work i
-
Sending from motion back to FCP
I highlight a sequnce or clip and SEND TO "Motion" and choose inbed content, I make my effects and FILE<SAVE in motion and FCP reads a change. The video i sent was anamorfic DV 16/9. In motion I edited the fotage in 16/9 . when FCP reads the saved mo
-
[xfce4]howto keep the personalized theme ?
I've got Arch Linux installed on 6 PCs for an association. We customized xfce4 the best we could, then everything is gone as soon as it gets upgraded (yesterday to 4.2.3-1). The way we changed the splash screen is dirty, as for now we simply edited /
-
Hello Guys i am working on updater Framework and continously facing error:16824 during updating of my Air file. i checked my config.xml as well as updater.xml(Residing on server).everything is perfect stil cant understand wot is the