How to use CRM authorization object.

Similar Messages

• How to use Standard Authorization Object 'M_MATE_WRK'  in SE38?

  Hi all,
  We have developed one program which calculates the commercial price of the material   
    and update the same in the material master.
  Now we want to implement authorization checks at Plant Level.
  For this purpose I am Using 'M_MATE_WRK' which is standard authorization object.
  But in my Program when I am checking for it, its giving the sy-subrc value as 0.
  This indicates that either it is successful or the object is not active for this particular  program. In my case I know that its the second case only.
  So now somewhere i need to 'Check' this object for this particular Program.
  I have checked SU22 , SU24 but couldn't figure out where should i do the respective  setting.
  I am working on ECC 6.0
  Please help me on this.
  Bare with me if i am asking a silly question.

  Hello All,
  The Problem is resolved now.
  Actually it was the first case only.
  When i created the new user id and checked i realized that its working fine and there was
  some mistake while checking previously.
  Anyways thanks for ur reply.

• How to Use new Authorization Objects

  Hi guys i need to implement the new schema of authorizations and i have created an authrization and add the 0comp_code characteristic (previously i set i it up as authorization relevant) and i need to add the restrictions for infoprovider but i need to add the new infoobjects 0TCAIPROV, 0TCAACTVT, 0TCAVALID, but this infoobjects i ve activated are not authorization relevant and i am not using them in any infocube, thats the reason why i cant use them in an authorization.....
  Do i need to add them in my infocube or theres another configuration in order to use them?
  Regards

  Hello Oscar,
  You do not have to add the 0TCA* characteristics to your InfoCube. Instead you have to set these characteristics to authorization relevant. Then everything should work as intended.
  General information on how to use the new analysis authorizations can be found here: https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/ded59342-0a01-0010-da92-f6b72d98f144
  Kind regards,
  Stefan

• USE Standard Authorization object in Z Program

  Hi Experts,
  I have already checked other threads regarding this but could not resolve my problem.
  I have created a Z program to update Material Master. I need to use the Authorization object  M_MATE_STA in my program for performing authorization check. Please help me how can I do that?
  Thanks

  hI,
     below is a similar code...
  CONSTANTS:  lc_authobj  TYPE char15 VALUE 'F_BKPF_BUK',
  AUTHORITY-CHECK OBJECT lc_authobj
             ID lc_id_bukrs FIELD v_bukrs
             ID lc_id_actvt FIELD lc_activity.
    IF sy-subrc NE 0.
    ENDIF.
  Amol

• How to Use Transient View Objects to Store Session-level Global Variables

  hi
  Please consider section "40.8.5 How to Use Transient View Objects to Store Session-level Global Variables"
  at http://download.oracle.com/docs/cd/E14571_01/web.1111/b31974/bcstatemgmt.htm#ADFFD19610
  Based on this documentation I created the example application
  at http://www.consideringred.com/files/oracle/2010/ProgrammaticalViewObjectAndRollbackApp-v0.01.zip
  It behaves as show in the screencast at http://screencast.com/t/qDvSQCgpvYdd
  Its Application Module has a Transient View Object instance "MyEmployeesContextVOVI", as master for the child View Object instance "EmpInCtxJobVI".
  On rollback the Transient View Object instance keeps its row and attribute values.
  Also when passivation and activation is forced (using jbo.ampool.doampooling=false ) the Transient View Object instance seems to keep its row and attribute values.
  questions:
  - (q1) Why does the expression #{bindings.MyEmployeesContextVOVIIterator.dataControl.transactionDirty} evaluate as true when a Transient View Object instance attribute value is changed (as shown in screencast at http://screencast.com/t/qDvSQCgpvYdd )?
  - (q2) What would be a robust approach to make a Transient View Object instance more self-contained, and manage itself to have only one single row (per instance) at all times (and as such removing the dependency on the Application Module prepareSession() as documented in "5. Create an empty row in the view object when a new user begins using the application module.")?
  many thanks
  Jan Vervecken

  Thanks for your reply Frank.
  q1) Does sample 90 help ? http://blogs.oracle.com/smuenchadf/examples/
  Yes, the sample from Steve Muench does help, "90. Avoiding Dirtying the ADF Model Transaction When Transient Attributes are Set [10.1.3] "
  at http://blogs.oracle.com/smuenchadf/examples/#90
  It does point out a difference in marking transactions dirty by different layers of the framework, "... When any attribute's value is changed through an ADFM binding, the ADFM-layer transaction is marked as dirty. ...".
  This can be illustrate with a small change in the example application
  at http://www.consideringred.com/files/oracle/2010/ProgrammaticalViewObjectAndRollbackApp-v0.02.zip
  It now shows the result of both these expressions on the page ...
  #{bindings.MyEmployeesContextVOVIIterator.dataControl.transactionDirty}
  #{bindings.MyEmployeesContextVOVIIterator.dataControl.dataProvider.transaction.dirty}... where one can be true and the other false respectively.
  See also the screencast at http://screencast.com/t/k8vgNqdKgD
  Similar to the sample from Steve Muench, another modification to the example application introduces MyCustomADFBCDataControl
  at http://www.consideringred.com/files/oracle/2010/ProgrammaticalViewObjectAndRollbackApp-v0.03.zip
  public class MyCustomADFBCDataControl
    extends JUApplication
    @Override
    public void setTransactionModified()
      ApplicationModule vApplicationModule = (ApplicationModule)getDataProvider();
      Transaction vTransaction = vApplicationModule.getTransaction();
      if (vTransaction.isDirty())
        super.setTransactionModified();
  }Resulting in what seems to be more consistent/expected transaction (dirty) information,
  see also the screencast at http://screencast.com/t/756yCs1L1
  Any feedback on why the ADF Model layer is so eager to mark a transaction dirty is always welcome.
  Currently, question (q2) remains.
  regards
  Jan

• What is the use for lock object and how to use the lock objects

  Hi Guru's,
  I am new to ABAP .Can you please clarify the that what is the use of lock object and how to use the loct object .what is use of the Deque & Enque  function modules .

  hi ,
  below are some minfo about lock objects :
    Lock Objects
  These types of objects are used for locking the access to database records in table. This mechanism is used to enforce data integrity that is two users cannot update the same data at the same time. With lock objects you can lock table-field or whole table.
  In a system where many users can access the same data, it becomes necessary to control the access to the data. In R/3 system this access control is built-in on database tables. Developers can also lock objects over table records.
  To lock an object you need to call standard functions, which are automatically generated while defining the lock object in ABAP/4 dictionary. This locking system is independent of the locking mechanism used by the R/3 system. This mechanism also defines LUW i.e. Logical Unit of Work. Whenever an object is locked, either by in built locking mechanism or by function modules, it creates corresponding entry in global system table i.e. table is locked. The system automatically releases the lock at the end of transaction. The LUW starts when a lock entry is created in the system table and ends when the lock is released.
  Creating Lock Objects
  Lock object is an aggregated dictionary object and can be defined by using the following steps:
  o From initial data dictionary screen, enter the name for the object, Click Lock object radiobutton and then click on Create. The system displays a dialog box for Maintain Lock Objects screen
  o Enter short text as usual and the name for primary table.
  -Save
  -Select Tables option
  From this screen you can:
  Select secondary tables, if any, linked by foreign key relationship.
  Fields for the lock objects. This option allows you to select fields for objects (R/3 system allows locking up to record level). Lock object argument are not selected by user but are imposed by the system and includes all the primary keys for the table.
  1) Exclusive lock: The locked data can only be displayed or edited by a single user. A request for another exclusive lock or for a shared lock is rejected.
  2) Shared lock: More than one user can access the locked data at the same time in display mode. A request for another shared lock is accepted, even if it comes from another user. An exclusive lock is rejected.
  3) Exclusive but not cumulative: Exclusive locks can be requested several times from the same transaction and are processed successively. In contrast, exclusive but not cumulative locks can be called only once from the same transaction. All other lock requests are rejected.
  Also, last but not the least, locking the object is logical (locking with any enqueue ) .so, you have to use the lock object while trying to access from second program .
  reward if helpful ,
  Regards,
  Ranjita

• How we can show authorization object  at infoprovider  level

  hi all
  how we can show authorization object at infoprovider level..
  shalini

  S_RS_ICUBE:
            Auth objects for working with Infocubes and their sub-objects. For example,
            protecting users who can define the Infocube, applying update rules, and
            looking at the data in the Infocube.
  In order to execute any query, u must have access to R_RS_ICUBE and S_RS_COMP. S_RS_COMP is
  a powerful object that enables u to make choices on how to secure.

• Authorizations in CRM 2007 - How to check missing authorization objects?

  Hi,
  In our project we are currently busy with the set up of authorizations.
  I did create the necessary PFCG and Business roles.
  For the PFCG roles, I did create all of them by copy of the standard SAP_CRM_UIU_FRAMEWORK so that the user can  access to the web layout.
  Now I need to give authorizations for other CRM objects, my question is: How can I see which objects are missing to displaying or creating activities in the new WEB Layout?
  In the old days we used the SU53 to check the authorization objects that were missing, how can we do it now in this new release? I tried it and didn't worked out.
  Thx
  Regards
  Hugo

  Hi,
  For report CRMD_UI_ROLE_PREPARE you have to input a business role - not a PFCG role. Are you doing that?
  Are you getting no results at all in ST01 or are all results just with return code 0?
  You have to remember to set a filter for your user in ST01 before activating the trace. Another thing to check is if you are using several application servers. I would imagine the trace has to be activated on the same application server as the Web UI. You can change the application sever in SM51.
  /Anders

• Use the authorization object while creating RFC

  Hi All,
  I'm able to create a RFC, can login from one sap system to another sap system and use the  following FM.  Here my concern is how to make the RFC more secure, i mean any user can access the target system with my login. Meanwhile came across a authorization object text box in the LOGON and SECURE tab while creating RFC.
  so please put on light on how to authenticate the specific user to logon using the RFC.
  Thanks in Advance.
  Regards
  Lalitkumar.

  Hi Lalit,
  Usually for RFC connection will be done with the, user type   system user type (means,they should not be able to login to system thru GUI)
  2. Even if the user know the login id / password, he should  have auth to create RFC like (SM59 and related auth objects)
  and even for remote connection also we have different auth to restrict
  3. These type of authorization will be  given to basis guys only.
  4. Logon/Security 
               Lang-En
               Client-` client no
               user-  user
               Password - bw password.
  Here you will be specfying the  user id  ( system type)  / password for connecting from one system to another.
  and in next tab you can do Test connection.
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/a08fbe33-0501-0010-2d9c-fb37e9795fd9
  Thanks,
  Sri

• How to use additional authorization creator?

  Hi All,
  I want to know how I can use additional authorization creator to give or not giving authorization to user forms and reports to different user? the help doesn't explain much. the main confusion is what should be given as 'Authorization ID'. should it be the menu ID?
  Thanks in advance for any help on this...
  regards,
  Binita

  Additional Authorization Creator Window
  Definition
  Use this window to create and add a new permissions object for user-created forms.
  Field
  Description
  Permission ID, Name
  Enter the permission object ID and name.
  Option
  Sets permission options for the new object. Two options are available:
  Full/Read/None
  Full/None
  Item
  Defines the object as an item rather than a form.
  Permissions set to form apply to all its subordinates. Permissions set to an item do not apply to the parent form.
  Level
  Sets hierarchy level for the object.
  Authorization Location
  Parent ID
  Selects a parent item when you add a subordinate object.
  Display Order
  Selects the location of a subordinate or sibling object within the permission hierarchy.
  Forms ID/Edit
  Opens the User Authorizations – Forms ID window.
  Assigns the permissions object to a user-form of your choice by entering the form ID.
  Add Sibling
  Adds a new sibling to the object.
  Add Subordinate
  Adds a new subordinate to the object.

• How to get all authorization objects for a certain authorization profile

  Hi ABAP experts,
  I have the following problem: for a certain authorization profile of a role (created with transaction PFCG) I would like to get all contained authorization objects: e.g. for the contained object PLOG I would like to know/read all corresponding parameter values.
  So:
  - where are these values stored (dictionary table)?
  - is there already a FM or a report to read all authoriation values for a certain authorization profile?
  Thanks in advance.
  Best regards,
  Oliver

  Hi,
  check the following it might useful for you:
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c
  if helpful reward points are appreciated

• How to use methods when objects stored in a linked list?

  Hi friend:
  I stored a series of objects of certain class inside a linked list. When I get one of them out of the list, I want to use the instance method associated with this object. However, the complier only allow me to treat this object as general object, ( of Object Class), as a result I can't use instance methods which are associated with this object. Can someone tell me how to use the methods associated with the objects which are stored inside a linked list?
  Here is my code:
  import java.util.*;
  public class QueueW
       LinkedList qList;
       public QueueW(Collection s) //Constructor of QuequW Class
            qList = new LinkedList(s); //Declare an object linked list
       public void addWaiting(WaitingList w)
       boolean result = qList.isEmpty(); //true if list contains no elements
            if (result)
            qList.addFirst(w);
            else
            qList.add(w);
       public int printCid()
       Object d = qList.getFirst(); // the complier doesn't allow me to treat d as a object of waitingList class
            int n = d.getCid(); // so I use "Object d"
       return n; // yet object can't use getCid() method, so I got error in "int n = d.getCid()"
       public void removeWaiting(WaitingList w)
       qList.removeFirst();
  class WaitingList
  int cusmNo;
  String cusmName;
  int cid;
  private static int id_count = 0;
       /* constructor */
       public WaitingList(int c, String cN)
       cusmNo = c;
       cusmName = cN;
       cid = ++id_count;
       public int getCid() //this is the method I want to use
       return cid;

  Use casting. In other words, cat the object taken from the collection to the correct type and call your method.
     HashMap map = /* ... */;
     map.put(someKey, myObject);
     ((MyClass)(map.get(someKey)).myMethod();Chuck

• How to use custom authority object to execute certain code?

  Hi Gurus,
  I'm trying to use an authority-check just to execute certain ABAP code for some roles only, but I don't get to make it work as every user gets to exectute the code. I'm also not sure of which field(s) I should add to my authorization object when I'm checking it.
  Does anyone know if there's a way of making it? Thanks in advance.
  Edited by: Jorge Gonzalez on Jun 25, 2010 11:42 AM

  Hi.
  If the authority object is already created then you can view in transaction SU21, Select the custom object and double click on it.
  You can see the Authorization fields that need to be passed to the authorization object while using.
  For eg: If you see BUKRS, then you need to pass the company codes relevant so the authority check is performed
  All Authority object has activity which informs the operation to be performed. for eg:
  ACTVT: Activities.
  01 = Create
  02 = Change
  03 = Display
  06 = Delete
  07 = Activate
  10 = Post
  Also check for documentation if it is available, if so it makes life easy.
  Hope this helps
  Regards
  Shiva

• How to use a Graphics Object in a JSP?

  Hello, I do not know if this is a good or a silly question. Can anyone tell me if we can use a Graphics object in a JSP. For example to draw a line or other graphics, i am planning to use the JSP. Any help is much appreciated.
  Regards,
  Navin Pathuru.

  Hi Rob or Jennifer, could you pour some light here.
  I have not done a lot of research for this, but what i want to do is below the polygon i would like to display another image object like a chart... is it possible? If so how to do it? Any help is much appreciated.
  here is the code:
  <%
  // Create image
  int width=200, height=200;
  BufferedImage image = new BufferedImage(width,
  height, BufferedImage.TYPE_INT_RGB);
  // Get drawing context
  Graphics g = image.getGraphics();
  // Fill background
  g.setColor(Color.white);
  g.fillRect(0, 0, width, height);
  // Create random polygon
  Polygon poly = new Polygon();
  Random random = new Random();
  for (int i=0; i < 5; i++) {
  poly.addPoint(random.nextInt(width),
  random.nextInt(height));
  // Fill polygon
  g.setColor(Color.cyan);
  g.fillPolygon(poly);
  // Dispose context
  g.dispose();
  // Send back image
  ServletOutputStream sos = response.getOutputStream();
  JPEGImageEncoder encoder =
  JPEGCodec.createJPEGEncoder(sos);
  encoder.encode(image);
  %>
  Regards,
  Navin Pathuru

• How to use crm blueprint

  Hi, I'm new to using blueprint in creating the UI/portal page.
  Can anybody direct me on how to use blueprints to create buttons, tables, textfields, etc, and how to process its events.
  Thanks.

  Arnold,
  U need to go through PCUI Cook Book....and more clarifications will get in CRM forums. Here is the link where u can find the link to PCUI cook book.
  PCUI COOK BOOK
  Regards,
  Arun.