Authorization control- WBS specific

Similar Messages

• Authorization control for ordering specific materials

  Hi Experts
  Is it possible to set up control on specific materials, so that those materials can not be allowed for procurement unless the authorization is provided.
  In this context, can we use DG profile and assign certain authorizations?
  The specific requirement is intended for identifying such material as well as for providing authorization for ordering.
  warm regards
  marias

  Hi,
  If you want to control on ordering material, you can set up Release Procedure, so that without approval ,purchase order can not be processed.
  If you want to block the material for procurement, you can use Source list ( ME11), block the material , when ever required, you can remove the block and procure it and again block it.
  Regards,
  Biju K

• Authorization control on different subdirectories in content manager

  hi All,
  IHAC, in a GS, administrator defines content manager taskflow and assigns authorization for different roles on content,customer needs to control authorization on different sub directories, for example: dir1 has 2 sub directories, dir1_1 and dir1_2, customer wants to assign u1 to manage dir1_1, assign u2 to manage dir1_2.
  Use different GS is not a solution in this case.
  While I can define multiple pages for each subdirectory, content manager has different subdir defined, each page has it's own access control, page_dir1_1 will deny u2 to visit, page_dir1_2 will deny u1 to visit, but this disables u1 to query dir1_2 and u2 to query dir1_1.
  Security group and account has been assigned for dirs in ucm, seems I can't use them to refine the control.
  Is there any sulotion on this?

  Hi,
  C_PROJ_VNR 
  PS
  PS: Project Manager for Project Definition with ACTVT 01
  C_PRPS_VNR with actvt 03
  Provide above object to Dept. A users to let them create project definition with activity 01.
  C_PRPS_VNR 
  PS
  PS: Project Manager Authorization for WBS elements with ACTVT 01
  C_PROJ_VNR with ACTVT 03
  Provide above to Dept B users to let them create WBS element for specific project with activity 01
  Is it not working with above, could you try this?
  BR,
  Mangesh

• Control User Specific button in ALV report

  Hi,
  Can anybody please suggest me how to control "USER SPECIFIC" button in ALV report layout using authorization object. I mean if you can tell me which authorization object is responsible to control the "USER SPECIFIC" button.

  additional info to what Lakshmi already said:-
  normally the restrictions for saving layouts/display variants are done at 2 levels:
  1) The developer of an ALV list first predetermines the authorization in the 'i_save' parameter within the code.
  I_SAVE = ' '     -
  layouts cannot be saved
  I_SAVE = 'A'   -
  user-specific and cross-user layouts can be saved
  I_SAVE = 'X'   --- cross-user layouts can be saved
  I_SAVE = 'U'  ---  user-specific layouts can be saved
  2) The second level comes to us restriciting the S_ALV_LAYO which gives access to users to save global layouts if I_SAVE for that particular transaction is A or X.
  for example, a report has I_SAVE= 'A', which means
  it will allow to save  User-specific  layouts without any restrictions.
  and if user has S_ALV_LAYO then he can save both User-Specific and Global Layouts(variants).
  it would be better to keep this object separate.

• Authorization control based on responsible persons

  Hi Experts
  My project structure is operated by several users.
  To have a control on each WBS (based on responsible person) i have set up authorization control for auth object C_PRPS_VNR.
  I have acheived control on WBS elements.
  However, the activities and network are still editable.
  Please suggest the auth control for the wbs and resp NWAs based on resp person.
  warm regards
  ramSiva

  Hi Ram Siva,
  If you are using individual Network header for different WBS element,you can use MRP controller field in the assignment tab page of Network heade for this authorisation.You can create the equal number of Person responsible as MRP controller and control the authorisation.

• Authorization control on material reservation creation and change (MB21 & M

  Hi Friends
  Please help me to find a solution on Authorization control on material reservation creation and change (MB21 & MB23).
  Client looking for a control over end user on those T.Code s but not at T.Code level;
  Client looking for control either based on "Storage location" and/or u201CProduct hierarchyu201D.
  More specifically, user A and B both can Create/Change MR but user A only can do it for the MR which related to storage location say YY while B authorized for storage location ZZ
  Thanks in advance.

  Hello Partha,
  Only available Standard SAP Authorization Objects, related to Reservations, are M_MRES_BWA (Reservations: Movement Type) & M_MRES_WWA (Reservations: Plant) where you can maintain authorizations based on Movement Type & Plant respectively and hence seggested enhancement.
  You can use Tcode-SUIM to search for Basis authorization details i.e. Roles defined for specific transaction/authorization object / profiles.
  Revert if any further info required.
  Regards,
  Anup

• Authorization control for batch master

  Hello Experts,
  I have a special requirement from client on authorization control on batch master. The requirement is user should not be allowed to change the batch header details but allow to change selected characteristic values. For e.g If I have a batch A, the header values such as prod date, country of orgin etc should not be allowed to change. In classification view few characteristics only should be editable, rest all should only be displayed.
  Is there any option to do this. Either through authorization control or exits. We dont want to create a custom transaction to achieve this.
  Thanks in advance
  Prathib

  Hello
  The following document explains how to check which authorization objects are called on each transaction:
  How to analyze authorization issues in debug
  BR
  Caetano

• MD61 -Authorization control for Version , requirements type -reg

  Hi,
  We have an issue in providing MD61 -Create Planned Independent Requirements to the users
  By standard authorization objects available , Plant level authorization control only is there
  if we have to give authorization for many users in the same plant based on teh VERSION , REQUIREMENTS TYPE  etc... is it not possible ?
  can the authorizations objects be created manually for these and assign to teh concerned user's roles ?
  please provide your thoughts
  regards,
  madhukiran.

  Dear Madhu,
  Authorization objects can be added for an individual T Code also in SU24.
  Check with your Basis consultant,Also i think its possible to give the authorization for versions as well
  as requirement type also.
  Regards
  Mangalraj.S

• Authorization control for Z fields

  Hi all,
  We have appended a structure to VBAP; our requirement is to update these Z fields based on authorization control.
  Other than creating Z auth objects and checking them in our exit before updating Z fields, is there any other standard option to control updating of these Z fields.
  Regards,
  Krishna.
  SAP SD Techno Functional.

  Hi all,
  We have appended a structure to VBAP; our requirement is to update these Z fields based on authorization control.
  Other than creating Z auth objects and checking them in our exit before updating Z fields, is there any other standard option to control updating of these Z fields.
  Regards,
  Krishna.
  SAP SD Techno Functional.

• Authorization control for cost analysis/itemization view

  Hi Experts,
  Can we control the access to cost analysis/itemization report  in CO03 by authorization control ?
  Thanks

  Hi,
  Most probably it may not be possible.
  moreover, Why do you want this? Cost analysis will be in display mode only. Infact it benefits the user. They can analyse and correct the master if required.
  Think once again before making control. Because, everytime people has to come to authorised person to see the cost difference, which will disturb the authorised person.
  This is my personal opinion.
  Madhava

• Authorization control for actual price calculation

  Dear all,
  I found that there is no authorization control for actual price calculation(KSII), this means user can calculate actual price for all cost centers, even this cost center belongs to other company. Is there a way to control this?
  Thanks,
  Ben

  Hi Ben,
  By SAP standard we do not have the control.  we also have the same situation.  We are venturing in to Realisation phase and we decided to have some kind of program (development) to control this.
  Please let me know if you find some better solution
  Best Regards
  Surya

• Authorization control in Web Dynpro

  Dear experts,
  I have a question about setting authorization in Web Dynpro.  For example, how can I control if a button can be pressed or what kinds of data should be displayed based on user role in UME. 
  Moreover, if I have security settings declared in EJB (ejb-jar.xml). Then I use this EJB in Web Dynpro.  Can the UME role be passed to the EJB, i.e. the security setting in EJB still valid?  Thanks.
  Best regards,
  Ken

  Hi
    I have created a webdynpro component that interacts with SAP. I have done the authorization control through SLD. Well for individual elements of a webdynpro application i dont know if it is possible to restrict through authorization control.Maybe its something that needs to be worked upon.
  thanks
  ravi

• BOM authorization controls -reg

  Friends ,
  we use only BOM with usage 1 -production BOM , we dont want to maintain many BOMs like engineering bom ,design bom ,production bom like that seperately.
  in this context we require some authorization control to control the users for BOM changes for
  BOM during new product developmental stage
  BOM once mass production kicks
  we want certain people only authorised to create or change BOM at new product development stage (precisely at R&D personnel )
  once it goes to mass production we dont want the R&D personnel control on it we would like to authorize operations personnel to take owership of it 
  is this can be done ? which object i have to use to differentiate between BOM at new product stage and mass production stage
  once it changes from new product stage to mass production stage some where we have to maintain this object and contro, through this
  please help at the earliest
  thanks
  madhu kiran

  Hi Madhu,
  The authorization objects checked for BOM, Inform your basis personnel to use them to authorize as per your business need.
  C_STUE_BER     CS BOM Authorizations     
  C_STUE_NOH     CS Authorization to process BOMs without a change number     
  C_STUE_WRK     CS BOM Plant (Plant Assignments)
  C_AENR_BGR          CC Change Master - Authorization Group
  C_AENR_ERW     CC Eng. Chg. Mgmt. Enhanced Authorization
  C_AENR_RV1     CC Engineering change mgmt - revision level for materials
  C_DRAD_OBJ     Create/Change/Display/Delete Object Link     
  C_TCLA_BKA     Authorization for Class Types
  Hope the above answers your query.
  Regards,
  Vivek

• Support for  Proxied Authorization Control ?

  Does OID support the Proxied Authorization Control
  which in and extension of LDAP v3 spec? If not will
  it ever, and if so - when?
  Thanks,
  Artur...

   Not sure if it will work in your case but I am using the PixtoCam app which works very good for me.

• Authorization control for "Revoke  Status Closed"

  Dear Experts,
  We are trying to restrict the authorization of business transaction u201CClosedu201D & u201CRevoke status closedu201D through authorization control for transaction COR2.
  For that I have included authorization objects- K_ORDER, K_VRGNG, I_VORG_ORD in the user profile.
  I have also added these objects in SU24 with check indicator u201CChecku201D & proposal u201CYESu201D
  Through authorization object- K_ORDER I succeeded to restrict business transaction u201CCloseu201D.
  But I am unable to restrict u201CRevoke Status Closedu201D.
  I have also tried for this with user status but through user status also I am unable to restrict u201CRevoke Status Closedu201D.
  Can anybody help me for this.
  Regards
  Vivek

  Dear ,
  You can do it through two option :
  1.Apply Screen variant -SHD0 at user level in which you can switch off menu path of TECO/REVOKE etc.
  Refer : http://wiki.sdn.sap.com/wiki/display/Snippets/TransactionVariant-AStepbyStepGuidefor+Creation
  2.You can try User Status at Production Order level .Refer : authorization for TECO
  You can also check by User Exit : PPCO0007 (Exit when saving Production Order)
  Regards
  JH