Authorisations for a user in SM59

Similar Messages

• Access to some UDFs authorised for certain user

  Dear All,
  This issue made me confusing, it is about UDF access authorisation. Is it possible to authorise a certain user to open or view UDF ?For example : I have 5 UDFs that only can be used by sales dept user and 5 UDF's are for purchasing dept. How to authorized the UDFs according to its dept ? Thanks in advance.
  Rgds,

  Hi All,
  I managed to resolve this problem by using additional authorisation creator that using form ID 38 and then in the general authorisation --> user authorisation is set to no. if it is authorised per user name, the user will not able to open UDF settings (CtrlShiftB) except there is the same level with him/her that can open the document, I think the settings can be opened. I almost escalated this problem to SAP support.
  Tks for your all participations. More power to you...
  Rgds,

• Authorisations for RFC User

  Hello,
  Does anyone have an exhaustive list of the authorisations that should be granted to RFC users in GTS and for those in the Feeder Systems?
  Thx,
  Marc

  Hi Marc
  I haven't reached this stage yet, as you know.. from the question you have answered for me.
  But I believe it is authorization to the object s_rfcacl. Can you check if it works ?
  (In a similar situation we tried to give the user access to additional RFC authorizations or SAP_ALL and then once we found the rfc working... reduced the authorizations given to that user)
  Is there any specific error that you get when you run the RFC authorization test ?

• Status Profile: Configuration required for authorisation based on user

  hi friends
  from the sale order , i configured the status profile for authorisation for release the item level .
  so what i do for cofiguration to give authorisation particular user(manager) and also not required for user(end user)
  with regards
  dinesh
  Edited by: code acess on Feb 28, 2011 6:22 AM

  hi ram
                   thanks, how i give authorisation for particular user.. i need configuration setting for authorisation. i dont know what i tell to Basis for authorisation.
  Consultant
  with regards
  dinesh

• MM01 tcode for SD user with restriction to SD related codes only

  Dear Experts
  How can we assign MM01 Authorisation for SD user with a restriction that he can access only <b><u>SD RELATED MATERIAL ONLY</u></b> ?,     Why because the material master is same for   <u>MM Module</u>   and   <u>SD Module Product Master</u> also.
  There is no listing for Material Group parameter in the Material Object
  Material Type Object : M_MATE_MAR
  Material         Object : M_MATE_MAT
  Thanks in advance
  Please advise me.
  Regards
  PS Prasad

  Dear Corinne Müller 
  First of all, let me say Sorry for the late reply to your post.
  I have gone through the objects you have told to that particular SD User.
  He have been already assigned those objects.    But one thing I have observer
  here is the authorisation object you have given    M_MATE_WGR
  contains 2 parameters those are
  (01) Activity                       01, 02, 03
  (02) Authorization Group
  The above said (02) parameter does not contains any data to select in its dropdown box.   I think functional people does not created material groups
  while doing configuration part.
  So, here I can not distinguish the material whether it related to SD Module OR MM Module. And can not restrict user's to access TCode MM01 basing on their module related material only. Am I right ????
  Any further suggetions ?????
  Thanks for your reply.
  I am just learner in BASIS.   Kindly be in touch with my e-mail id.
  My E-Mail id : [email protected]
  Thanks once again
  PS Prasad

• User has no authorisation for function group SYST?

  Hi All,
  I was trying to open Bex Analyzer in BI 7.0.
  I am getting the error as mentioned below:
  "User has no authorisation for function group SYST".
  Why is it so.
  Please reply.
  Thanks in Advance.

  Unless you have full authorizations (SAP_ALL / SAP_NEW) you have to grant authorizations for each activity.
  With PFCG, add the following RFC on Authorization Object S_RFC:
  RFC1
  RS*
  SDIFRUNTIME
  SYST
  SYSU
  Hope it helps
  GFV

• Restrict the posting period opening and closing for some users

  Dear SAP gurus,
  I want to restrict some users to open the posting period and for some users close posting periods. I knew that these can be done through authorization group. Pls explain how to create authorization groups and how to use those?  Anybody can help me out?
  Regards,
  Venkata Reddy

  Dear Venkatareddy,
  There are two sets of period in OB52. The first set of "From" and "To" is for the authorised group and second set is for the non authorised group. In the "Authorisation Group" (last column) give some 4 charecters name. Say "FICO".
  Now ask the basis to attach the object "FICO" for the users who are authorised say user1, user 2 and user3.
  Now in the first set of period you can maintain say 1 2008 to 16 2008 and in the second set 1 2008 to 1 2008.
  So except user1,2 and 3, all the others can post only in 1 2008. Whereas users 1,2 and3 can post in all the periods of 2008.
  Assign points if useful
  regards
  Venkatesh

• How to authorize a transaction code for a user?

  Hello,
  How can I authorize the user for a specific transaction code and how can I block it?
  I would appreciate if you can give some insight.
  Thank you.
  Hakan

  Hi Hakan,
  We can achieve this by using two T.Code SU01 and SUIM.
  First check in SUIM,the T.Code that you want to block  T.Code is belongs to which role.
  For finding it Click on roles.Click on transaction assignment.Enter your T.code and execute.
  After finding this goto SU01 and unassign that role for that user.
  In this way we can block the user to use one particular T.Code.
  For providing authorisation,add the role to the user id in SU01 T.Code.
  Run SU53 T.Code after running the failure T.Code to know all the errors.
  Please contact your BASIS person for all these.
  Regards,
  Krishna.

• How to block Specific G/L for an user

  Dear All my Expert,
  It is very much essential for me that I need to block the specific G/L for some users.
  It means those user only can made add/change the data but can not do the display the
  line item in FBL3n of selected G/L which I want to restrict for them.
  Can I do this? Please advice.
  With best regards
  Bishnu

  Hey Bishnu,
  Check the authorisation group through transaction code - SU24. You can provide the transaction code FS00 there to find out the respective authorisation object.
  Thanks & Regards
  Subhasish

• My mac pro says "It can't be synced because this computer is no longer authorised for purchased items that are on this iPad.

  But when I de-authorise and then re-authorise it says it's already authorised and then the same window pops up saying  "It can't be synced because this computer is no longer authorised for purchased items that are on this iPad.
  Battled all day.
  Removed the SC folder,
  Checked iTunes log in is correct.
  Checked Itunes is the same country.
  Restarted both devices.
  Tried different usb ports
  Any ideas?

  I found the solution to this problem
  the apple service helped me actually
  the best and the esiest way is to solve this problem  :
  create a new account (as an administator recomended) 
  Bonjour servises must be enabled ( go to control panel > administartive tools> sevices> Bounjour services (change the category to large icons if you dont see administartive tools )
  install itunes
  sign in
  authorize
  SYNC
  it must sync normally
  but if the meesage pops up that points on a particular items that could not be synced ( to ur itunes because you are not authorized for this items ) REMOVE THEM
  creating a new user account shows the items wich dont let you sync your iPhone
  after you REMOVE those **** items that were not authorised , you can go to your old user account and SYNC it as old kind time
  was having this problem 2 weeks , and nothing helped except this was. not deleting the SC Info folder, now copying apple folder to some other mobile divce folder
  REMEMBER  the problem is in your iPhone , it is about the items that are in your iPhone
  Thanks to Apple service
  for anyone who needs othe heple you r welcome to ask
  will hepl you with a pleassure cause i know how I felt this days:)

• "The iPod could not be synced because this computer is no longer authorised for purchased items"

  Whenever I try to sync my iPod to iTunes, this error comes up:
  "The iPod could not be synced because this computer is no longer authorised for purchased items that are on this iPod."
  I have already tried every solution suggested here: iTunes repeatedly prompts to authorize computer to play iTunes Store purchases

  I found the solution to this problem
  the apple service helped me actually
  the best and the esiest way is to solve this problem  :
  create a new account (as an administator recomended) 
  Bonjour servises must be enabled ( go to control panel > administartive tools> sevices> Bounjour services (change the category to large icons if you dont see administartive tools )
  install itunes
  sign in
  authorize
  SYNC
  it must sync normally
  but if the meesage pops up that points on a particular items that could not be synced ( to ur itunes because you are not authorized for this items ) REMOVE THEM
  creating a new user account shows the items wich dont let you sync your iPhone
  after you REMOVE those **** items that were not authorised , you can go to your old user account and SYNC it as old kind time
  was having this problem 2 weeks , and nothing helped except this was. not deleting the SC Info folder, now copying apple folder to some other mobile divce folder
  REMEMBER  the problem is in your iPhone , it is about the items that are in your iPhone
  Thanks to Apple service
  for anyone who needs othe heple you r welcome to ask
  will hepl you with a pleassure cause i know how I felt this days:)

• Tabular Form - Read only condition for certain users

  Is it possible to make a select list field in a tabular form read-only to certain users? Here's the situation:
  The tabular form lists the users who need to select "Approve" or "Reject" in that field (they are approving or rejecting an engineering change)
  I want all of them to see the approval/rejection of their team, but only have access to edit the select list associated with their record.
  Thanks in advance.
  Apex 4.0.0.00.46

  You could use either "authorisations" tab or "conditional display" for the relevant column attribute.
  Report Attributes->Column Attributes->authorisationsIt would be better to have some more detail about what you are trying to get (maybe a quick mock up of the form, for example) but, I can envision something along the lines of the following:
  For each approval/rejection field:
  1. Create an authorisation appropriate for access to to each approval/rejection field e.g. authorisation scheme "FOO"
  2. In the relevant fields column attributes, set the authorisation to "FOO"
  3. now create a read only "public" copy of the above field, using the "display as text (based on LOV does not save state)" - set the authorisation for this field as "{NOT FOO}"
  (if you don't want to use authorisations, you could build an equivalent using "conditional display" instead, which is basically the same thing, except column specific)
  The downside is of course that you're duplicating fields in your query, which creates a bit of redundancy. There may be better ways to achieve this (maybe you could make use of the APEX_ITEM api, for example) but this is fairly easy to set up IMO.

• How to restrict  delivery Block in va02 for various users

  Dear  Experts
  I am suppose to restrict the user depening on delivery block in transaction VA02 .There are no SAP pre-defined feilds  authorization Object to restrict at delivery block level from PFCG ,and I have Created manually authorization object and class in Tcode Su21 and Su20  with table VBAK but its not giving any change .
  Please kindly help
  Thanks in advance
  krishna

  Hi
  We have a very complex Billing block functionality. The sales orders are handled at many levels and when the process is completed at one level, they need to change the billing block to another one and the system will allow to change the block to the specified one only and not to any other block. There is a control in the code to restrict the allowed blocks.
  We also maintain a Ztable with list of users (few super users/process primes and key people) for whom system will allow to remove/change to any other block as they wish.
  In your case, if it is not possible through authorisations, then the best way is to handle the requirement through a Ztable for the users allowed to change the delivery block. This is one of the possible alternatives.
  Thanks,
  Ravi

• F110 Payment run authorisation for release of funds

  Hi All,
  we are in the process of streamlining our SAP banking process with Westpac's integrated banking system.
  Specifically the AP and payroll process.  Under the current system we upload the payment file to their online system and we then have two signatories who sign in and authorise the release of funds online.
  Under the new process, we want to remove any manual handling of the payment files.  It is assumed that the authorisation for the release of funds is done in SAP and there is no online signature for the release of the funds. 
  The only way i can think of to do this is by controlling access the payment run process and have our signatories process one element of the payment run each I.e.
  1)    AP clerk creates the payment proposal
  2)    Signatory 1 executes the payment proposal
  3)    Signatory 2 Executes the print of the payment run (this stage produces our output file which is sent directly to the bank)
  However, this seems a little clunky and our signatories are not necessarily SAP users.  does anyone have suggestions for a more elegant solutions to this? 
  many thanks
  Phil.

  Please work with you Security Team. The solution for this is:
  1. Create Three differenet Roles
  For Scenario 1) AP clerk creates the payment proposal
  Solution. Give in Role 1
  Key        Action
  02         Edit parameters
  03         Display parameters
  For Scenario  2) Signatory 1 executes the payment proposal
  Solution. Give in Role 2
  11         Execute proposal
  12         Edit proposal
  13         Display proposal
  14         Delete proposal
  15         Create payment medium proposal
  For Scenario  3) Signatory 2 Executes the print of the payment run (this stage produces our output file which is sent directly to the bank)
  Solution. Give in Role 3
  21         Execute payment run
  23         Display payment run
  24         Delete payment run payment data
  25         Create payment media of payment run
  26         Delete payment orders of payment run
  31         Print payment medium manually
  to See the above option follow the below path:
  T-Code F110>Enviornemnt>Authorization
  Hope this helps.
  Please let me know if you have any questions.
  Regards,
  Vivek Srivastava

• I want to add transaction code for one user.

  Hi abapers,
  My requirement is;
  I want to add transaction code for one user.
  EX: zsdf to kanne.
  Can any body tell me the procedure step by step.
  With regards,

  If you want to give authorisation to an user for a particular tcode, you need to first include the transaction code in an authorisation Role and then assign the authorisation role to the user id in the transaction code SUIM.
  A Basis guy will be able to help you to do this and anyway this is not the job of an ABAPer.
  Hope this helps you.
  Reward if this helps you