Authorization object for additional data of material
Hi,
in our Authorization there some user they can use MM01/MM02 only for specific
Maintenance Statuses - object M_MATE_STA (say L - Storage, X - Plant stocks, Z - Storage location stocks).
We also want, that this user are not allowed to change some additional data, but i don't know, if there
is some Authorization object.
Has anyone an idiea?
thanks.
Regards, Dieter
Have a look at M_MATE_MAN. Help text below:
Definition
This object determines whether a user is authorized to maintain material master data at client level.
Data at client level includes fields that cannot be maintained for each organizational unit (for example, for each plant or sales organization). It includes the following data in particular:
Material descriptions
Long texts (except sales texts and the material memo)
Units of measure
EANs
However, it does not include the objects of other applications that you can assign to a material when maintaining the material master record (for example, document assignment or classification) since separate authorizations can be given for objects of this kind.
Note
Even if a user does not have the authorization to display data at client level, the following data is still displayed for the material nevertheless:
Material descriptions and base unit of measure
Deletion flag on the initial Flag Material for Deletion screen
Defined fields
Fields Possible values Meaning
ACTVT 01 User may create data.
02 User may change data.
03 User may display data.
06 User may change deletion flags.
Edited by: Nick WW on May 27, 2011 9:27 AM
Similar Messages
-
Kindly give authorization object for mrp type in material master
Hi friends,
Kind tell me what is the authorization object for MRP type in material master.
Your help is considered more important.
thanks in advance
willaimshi,
check your authorisation objects here:
Go to PFCG --> Environment (at menu bar) --> authorization objects --> Display...
Here see for MRP and MM for material managament in the tree structure...
Regards
Priyanka.P -
Kindly tell me authorization object for MRP type
Hi friends,
Kind tell me what is the authorization object for MRP type in material master.
Your help is considered more important.
thanks in advance
willaimsHi Willaim,
There is no standard authorization object for MRP type.
Regards,
Alexander -
How to find out Authorization Object for Plant
Hi,
I have to implement an Authorization check for Plant in My Report Program.
Is there any transaction which can help me to find out Authorization Object for any field like Material and plant?
Thanks,
MamtaUsing SU21 u can create Authorisation Object.
The ABAP command AUTHORITY-CHECK is used for performing authorizaton checks in programs.
check f1 help on AUTHORITY-CHECK for the syntax.
check these links
link:[http://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c;jsessionid=(J2EE3417500)ID1605942050DB11298929682009193279End] -
Authorization Object for Material Type
Hi All,
Is it possible to restrict the user from creating the material master based on Material Type. If yes then what is the authorization object for the same.
Regards
MahendraDear Mahendra,
You can definitely restrict a end-user to only particular Material Type thru Authorizations.
Authorization Object: M_MATE_MAR
This can be done thru authorization management. Consult your Basis person or follow this:
SU01 - Enter the user Id & select display button. Now click on the Roles Tab & note down the role assigned to this user Id.
Go to T-Code - PFCG - enter the Role name & select the change icon.
Click on the Authorizations tab page. & then Click on Change Authorization Data.
Now expand the menu tree of Materials Management: Master Data & further expand the menu tree of Material Master: Material Types. Now click on the change icon next to Authorization Group & select the required Material Type that you want to authorize the end-user.
This is how you can give authorizations only for a particular Material Type.
Hope this helps.. .
Give point if useful...
Thanks,
Jignesh Mehta
Mumbai -
Authorization Object for using Object Services
Can you tell me how to limit a users authorization to create or delete attachements using the object services functionality? We'd like to control the addition and deletion of the attachments. Is there a specific authorization object for this functionality?
Thank you, JulieHi julie;
I hope that following are the solution for you problem. Check wheather this is helpful to you or not.
Authorization Object C_DRAW_BGR (Authorization Group)
The following table shows authorization object C_DRAW_BGR. This authorization object allows you to limit access to individual documents.
Fields Possible Values Description
BEGRU (Authorization group) 0000 - ZZZZ Used to restrict the authorizations for document maintenance further.
Authorization object C_DRAW_BGR can be used to restrict access to individual documents. It works like a simple on/off switch. If the check of object C_DRAW_BGR is fine, the user's authorization can be further restricted by checking C_DRAW_TCD (check only based on the document type) or C_DRAW_TCS (check of the
combination of document type and status). At the fifth level there is a BADI called DOCUMENT_AUTH01, which you can use to design your own authority check.
Authorization Object C_DRAW_DOK (Document Access)
The following table shows authorization object C_DRAW_DOK. This authorization object controls which original data of a specific document type there are access authorizations for.
Fields Possible Values Description
ACTVT (Activity) 52 53 54 55 56 57 Change application start Display application start Display archive application Change archive application Display archive Store archive
DOKAR (Document type) Here you enter the document type that access to original data is allowed for.
Authorization Object C_DRAD_OBJ (Object Link)
The following table shows authorization object C_DRAD_OBJ. This object controls which users can process which document info records, based on a combination of activity, object, and status.
Fields Possible Values Description
ACTVT (Activity) 01 02 03 06 Create Change Display Delete
DOKOB (Object) You must enter the data base table for the objects here (for example, MARA for material record).
STATUS (Document status)
if useful rewards points.
Regards,
nitin
Edited by: nitin bhagat on Feb 18, 2008 6:23 AM -
Authorization objects for transaction, one to view, and one to maintain
Hi all,
My requrement is to create two authorization objects for transaction, one to view, and one to maintain.
I know how to create objetcs vai sm21, but i donot know how to crate objects with activity codes.
Please suggest how to create object where i can asign activity codes.
regards
manishThe Authorization Concept
R/3 uses authorization objects to assign authorizations to users. An authorization object is a template for an authorization. For example, authorization object F_SKA1_BUK - G/L Account: Authorization for company codes requires the specification of two field values: Company Code and Activity. To allow a General Ledger supervisor to create a general ledger master record, he/she must be assigned an authorization to create (Activity 1) accounts for a specific company code (eg. Company Code 2000). Such an authorization is created using the object F_SKA1_BUK by assigning these field values and naming the authorization following an appropriate convention (eg. Z_SCC20001).
Authorizations may be classified as general authorizations, organizational authorizations or functional authorizations. General authorizations specify the functions a user may perform. Authorization object F_SKA1_BUK has been assigned to the function for creating general ledger master records. The system checks for the useru2019s authorization to create general ledger accounts (Activity 1) in at least one company code. The system then checks whether the user is permitted to create accounts for the specified organizational unit (company code) and has the required functional authorizations. Authorizations in this case may restrict the user to certain Charts of Accounts. In addition, an authorization group may be defined in certain authorization objects to protect individual master records.
Profiles relating to an organizational role (eg. General Ledger Supervisor) are defined consisting of a list of authorizations and other profiles. Such profiles are then assigned to users with that role and stored in their user master record along with other data (eg. password).
Do check this link as well.
http://articles.techrepublic.com.com/5100-10878_11-5110893.html -
HR Authorization : Custom Authorization Object for P_ORGIN
Hi,
I have created a Custom Authorization Object for HR named Z_ORIGIN (it has Personnel Subarea field BTRTL besides what's there in Auth. Object P_ORIGIN) and made it Check/Maintain for transaction PA30 in SU24.
I can see the entries in the USOBT_C & USOBX_C tables for this object, I am also able to add this object in the roles as well.
Everything looks fine, but when I execute the transaction the object Z_ORIGIN is never checked (for a user having this object in his/her User Master). Only P_ORIGIN object is checked instead.
We've ran the report RPUACG00 also which is mentioned in this thread.
We also coded the authority check code in the both user exit ZXPADU01 and ZXPADU02 for PA infotype operations
but still it is taking the P_ORGIN objectOnline Help
<a href="http://help.sap.com/saphelp_erp2005vp/helpdata/en/d9/64141c0774194593da29f3cb813f1b/frameset.htm">P_NNNNNCON (HR Master Data: Customer-Specific Authorization Object with Context)</a> -
Authorization Object for Transaction code XSLT_TOOL
Hi Friends
When i try to use transaction xslt_tool the following error appears "You are not authorized to use transaction xslt_tool".
Can anyone give the Authorization object for transaction xslt_tool,
Regards.
WishvaGive access to the transaction in PFCG.
Then use SU53 to highlight any additional access required. -
Authorization Object For Activate Reservation/Purchase Req - IW31
Hi,
I want to authorize only certain users to use button "Activate Reservation/Purchase Req" IW31 transaction. What is the Authorization Object for the above mentioned button, if any. Is there any other way that i can do this activity in customizing? I am using ECC 6.0
We find that activating the objects below (suggests- SU24)
M_BANF_BSA
M_BANF_EKG
M_BANF_EKO
M_BANF_WRK
allowed in IW31, that 'not-authorized-users' would not be able to create purchase requistions. therefore: no material procurement.
But for reservations, we didn´t find the object in IW31.
Thanks and regards
Gabriel.
Edited by: Gabriel_Fornazier on Dec 31, 2010 12:16 PMOlá Michely
Segundo a SAP não existe objeto de autorização em BASIS para restringir por usuário o botão da transação IW31 que eu precisava(Ativar Reserv./Req. de Compra). Portanto segundo a SAP, poderia usar a ampliação IWO10006 para resolver isso.
E foi o que fiz. Primeiramente criei manualmente um objeto de autorização 'Z' dummy, para atribuir a um usuário que não quero que enxergue o botão. 'DISP' o nome do botão(dar F1 no mesmo) que desejo esconder.
Posteriormete na EXIT desenvolvi o seguinte código para esconder o botão:
AUTHORITY-CHECK OBJECT 'Z_VORG_ORD'
ID 'ZBETRVORG' DUMMY.
IF SY-SUBRC EQ 0.
FCODE_EXC_CUST-FCODE = 'DISP'.
APPEND FCODE_EXC_CUST.
ENDIF.
Portanto, todo usuario que tiver aquele objeto de autorização ''Z'' no seu perfil não vai exergar o botão Reserv./Req. de Compra.
Essa é a melhor solução do que usar objetos de autorização de outras transações.
Espero ter ajudado
abraços,
Gabriel M. Fornazier
SAP FI Certified Professional
Minas Gerais - Brasil -
Authorization object for Parameter ID EFB
Dear Team,
How can we develop an Authorization object for Parameter ID.
Apperciate ur assistance on this.
Regards
ZulfikarSAP menu-->system >user profile>Own data
Maintain user profile select Parameters Tab
here enter parameter ID EFB and parameter value X or aa(whatever u crated name) and save user profile. -
Authorization object for Command Button
Hi all,
How can I create the Authorization object for command button which is on application server.
if you do not have auth when you click on that command button, it should be say 'you dont have auth'.
please help me in this.
regards,
Ajay reddyHi,
Tcode for Authorization Objects are,
su20----> for defineing authorization field ,
su21-----> for authorization class,
su22------> for assignement authorization object
To create an authorization object:
1) Execute transaction SU21
2) Double-click an Object Class to select a class that should contain
your new auth object
3) Click on CREATE (F5)
4) (If creating custom field) - Click the 'Field Maintenance' button -->
Click on CREATE (Shift+F1)
5) Enter the Name for the New Authorization field and the corresponding
Data Element and SAVE
6) Confirm the Change Request data for the new Authorization Field
7) Go back two screens (F3-->F3)
8) Enter the Authorization field name and document the object:
9) SAVE and ACTIVATE the documentation
10) Save the new Authorization Object
11) Confirm the change request data for the Authorization Object and
EXIT SU21
12) Finally, the SAP_ALL profile must be re-generated
Regards,
hema. -
Authorization object for vL02N
Hi,
I need the Authorization object for the VL02N.
My requirement is i need to give authorization for doing PGI in VL02N screen,but the user can only generate the VL02N(no change or modification). How can i control this?
pls adviceHi,
The authorisation object is:V_LIKP_VST
First Goto T.Code:SUIM
Check the role used for this T.Code:VL02N.I identified the role as "SAP_LE_GOODS_ISSUE_DELIVERY".
Next goto T.Code:PFCG.
Enter this role here.Click on Display.
Goto Authorisations tab.
Click on Display Authorisation data.
Goto Utilities-->Technical names on(if it is available else leave it).
Regrads,
Krishna. -
Authorization object for manual condition type in sale order
Hi experts
I want ask them, If exist an authorization object for manual Condition type (KOMV-KSCHL) in the sales order (VA01/VA02), that the user don' t can create neither modify the sale orden with a specific manual condition type (payment term) by stardard way.
Best regards
John AnguloHI John,
I would be surprised to know that someone uses the Payment terms as a condition in the Pricing procedure for sales orders. The payment terms define when the customer agrees to pay, (15, 20, 45 ,....days or 5 years or 10 years....whatever it be)
this detail for what i know is in the sales order header,and ideally has nothing to do with the Item level material price conditions.
its ok, If you mean something else by payment terms.....in principle you can have a conditon type restrcited such that manual entries on the condition are not possible. this cane be done in SPRO customizing, i am sure your functional consultants would know what to do (SPRO->Sales and Distribution->Basic Function->Condition Types), in the tab "Changes that can be made" have a value that says manual Processing is not allwowed
The ABAP route mentioned above is for a different scenarion and i dont think it is necessary for your requirement -
Authorization Object For Order Type in Tcode KO88
Dear Sir,
In Tcode KO88 , we want that an users must be able to use only a specific type "Order Type" . But we do not know which is the authorization object for this .
I look forward for the kind help from SAP Expert as how can we put restriction based on "Order Type" in Tcode KO88 .
Regards
B V Mittalhi,
check your authorisation objects here:
Go to PFCG --> Environment (at menu bar) --> authorization objects --> Display...
Here see for MRP and MM for material managament in the tree structure...
Regards
Priyanka.P
Maybe you are looking for
-
Duplicate Contacts On Mac After 10.9.5 Update
I haven't been using iCloud except for Find My Mac. After the update an iCloud configuration box appeared and I only left Contacts checked. Contacts listed iCloud and On My Mac groups. After I unchecked Contracts in System Preferences/iCloud the dupe
-
Hello, On my web dynpro screen there is one button add when i click on add button a new line inserted in table .After empty row insertion i am putting the values in the table on selecting drop down list by key .Two field coln selected correctly but w
-
IWork or Windows. HELP!
I have just bought my first laptop and first Apple in the form of a MacBook and am currently trying to decide whether to make the jump to iWork or download Office or Windows for mac onto my computer. I have had a bit of a play with the trial version
-
Is it possible to move to Alwayson Availability groups from existing sql server FCI ?
Is it possible to move to Alwayson Availability groups from? existing sql server FCI ? If yes, how to move and what are the pre-requisites?
-
Help, White Lines on my project O_o
Title says it all, I can't seem to get these lines out of my project I didn't notice them till like now. http://i46.tinypic.com/2hx2jde.pngAny help would be great thanks