Authorisation-object for Plant-WERKS in SD
Hi Experts,
Am working on a report for SD / OTC module.
We have PLANT-WERKS field in the selection screen, so, I have to cross-check user authentication for PLANT-WERKS level, so, when I checked the SU20 and SU21, I saw the below 2 objects,
1) 'M_RECH_WRK' (Invoices: Plant - Materials Management - Invoice Verification class)"
2) 'M_EINF_WRK' (Plant in Purchasing Info Record - Materials Management: Purchasing)
But, seems they are for MM module, pls. let me know Wht is the PLANT-WERKS authentication object for SD / OTC module?
Thank you
I don't think there are any SD based authorization objects exclusively for Plant. Table TOBJ defines auth objects and contains *_WRK entries only for MM, PP and WG modules. Listing all the SD objects in TOBJ, only the V_ECCN auth object includes the Plant in the fields checked, but it also checks another field and I'm not sure where it is checked, so it may or may not be useful to you. You might need to create a custom authorization object.
.. Craig
Similar Messages
-
Authority-Check Object for PLANT(WERKS)?
Hi Experts,
By using "V_VBAK_VKO" Authority Object am checking the user Authentication against the sales area(Sales OrgDistr. ChannelDivision) in my custom report. Below is the code,
AUTHORITY-CHECK OBJECT 'V_VBAK_VKO'
ID 'VKORG' FIELD s_vkorg
ID 'VTWEG' FIELD s_vtweg
ID 'SPART' FIELD s_spart
ID 'ACTVT' FIELD '01'
ID 'ACTVT' FIELD '02'.
(Note: My report is for SD/OTC module)
I also need to check the authenmtication of user against entered PLANT (WERKS) in selection screen, so, pls. let me know that What is the Authority-Check Object for PLANT(WERKS)
Thank youHi,
Transaction SU20, search for WERKS.
When you find it, double click on the row, in the bottom half of the resulting screen there is a list of authorisation objects that contain the field.
Unfortunately, you can't navigate from this list into the definition of the objects, so you'll need to cross-reference against transaction SU21.
Regards,
Nick -
Authorization object for plant on selection-screen
Hi All,
I need to cehck the authorization object for plant on sleection screen..the palnt is select-options.
I have written the code
Declaration of local constants.
CONSTANTS : lc_i(1) TYPE c VALUE 'I',
lc_eq(2) TYPE c VALUE 'EQ'.
REFRESH : r_werks.
LOOP AT s_werks.
IF s_werks-low IS NOT INITIAL.
AUTHORITY-CHECK OBJECT 'M_MATE_WRK' "Check if the user has autorization for the plant.
ID 'ACTVT' FIELD '03'
ID 'WERKS' FIELD s_werks-low.
IF sy-subrc NE 0.
r_werks-sign = lc_i.
r_werks-option = lc_eq.
r_werks-low = s_werks-low.
APPEND r_werks.
ENDIF.
ENDIF.
ENDLOOP.
LOOP AT s_werks.
IF s_werks-high IS NOT INITIAL.
AUTHORITY-CHECK OBJECT 'M_MATE_WRK' "Check if the user has autorization for the plant.
ID 'ACTVT' FIELD '03'
ID 'WERKS' FIELD s_werks-high.
IF sy-subrc NE 0.
r_werks-sign = lc_i.
r_werks-option = lc_eq.
r_werks-low = s_werks-high.
APPEND r_werks.
ENDIF.
ENDIF.
ENDLOOP.
My doubt is will the authorization will check the plants in between 1001 and 2001..suppose i have pplants 1001,1002,1003,1004,2001..Now will the above code will check for all the plants or only 1001 and 2001 if i specify in the select-options.
Regards,
rajHi Raj
First no need to LOOP AT s_werks and check s_werks-high as it will always be present only once in the table s_werks.
Do this
SELECT werks FROM t001w INTO li_werks
WHERE werks IN s_werks.
LOOP AT li_werks.
*check your authority thing here and fill the range
ENDLOOP.
Pushpraj -
Authorisation object for inspection type
Dear QM consultants,
We are developing one Z program where plant, inspection lot origin and inspection type are main input fields. We want to add authorisation object based on these inputs. I checked for M_BEST_WRK for plant and Q_INSPTYPE for inspection type. Object for plant is working fine but we are unable to restrict based on inspection type since Q_INSPTYPE does not have any activity field associated with it.
Has anybody come across such issue? Whether objects taken by me are correct, if not can anybody guide me what are the authorisation objects to be taken.
Thanks in advance.
Best Regards,
Anand RaoHi
Create your own autherization group with SU21
This will bring better control
Regards
Sujit -
Authorisation object for "PO text in the material master"
Hi,
My requirement is as below:
"All users can see the Purchase Order Text as usual, but only a few users should be allowed to create / change the PO Long Text.
For other users, the same should appear in display mode only (both in creation & in change mode, MM01 & MM02)."
Please let me know, How to map this.
As per my knowledge thsi is possible only thru authorisation. But I want to know what is the authorisation object for "PO text in the material master" (Pl note that only for PO text in the material master field). we want control on "PO text of material master"
Regards.
ChinnaHi,
The authorisation object is "M_MATE_MAT", pl check
Regards
Merwyn -
Authorisation Object for Payment Block Filed(ZLSPR) in FB02
Hi,
I want to restrict the authorisation to modify the field Payment Block to some of the users only in FB02 Tcode.
How can i achieve it.
My basis team said it can help me if i can give the authorisation Object for the same they can restrict the authorisation object to limited users.
regards
JayaHi Mallikarjun,
The authorisation Object given is related to Excise invoice ? So, please let me know how this would help in restricting modification of payment block filed in FB02?
regards
jaya -
How to create authorisation object for save button please help in abap
how to create authorisation object for save button please help in abap
Hi
In general different users will be given different authorizations based on their role in the orgn.
We create ROLES and assign the Authorization and TCODES for that role, so only that user can have access to those T Codes.
USe SUIM and SU21 T codes for this.
Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction.
If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check.
This means you have to allocate an authorization object in the definition of the transaction.
For example:
program an AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT <authorization object>
ID <authority field 1> FIELD <field value 1>.
ID <authority field 2> FIELD <field value 2>.
ID <authority-field n> FIELD <field value n>.
The OBJECT parameter specifies the authorization object.
The ID parameter specifies an authorization field (in the authorization object).
The FIELD parameter specifies a value for the authorization field.
The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields.
http://help.sap.com/saphelp_nw04s/helpdata/en/52/67167f439b11d1896f0000e8322d00/content.htm
To ensure that a user has the appropriate authorizations when he or she performs an action, users are subject to authorization checks.
Authorization : An authorization enables you to perform a particular activity in the SAP System, based on a set of authorization object field values.
You program the authorization check using the ABAP statement AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT 'S_TRVL_BKS'
ID 'ACTVT' FIELD '02'
ID 'CUSTTYPE' FIELD 'B'.
IF SY-SUBRC <> 0.
MESSAGE E...
ENDIF.
'S_TRVL_BKS' is a auth. object
ID 'ACTVT' FIELD '02' in place 2 you can put 1,2, 3 for change create or display.
The AUTHORITY-CHECK checks whether a user has the appropriate authorization to execute a particular activity.
This Authorization concept is somewhat linked with BASIS people.
As a developer you may not have access to access to SU21 Transaction where you have to define, authorizations, Objects and for nthat object you assign fields and values. Another Tcode is PFCG where you can assign these authrization objects and TCodes for a profile and that profile in turn attached to a particular user.
Take the help of the basis Guy and create and use.
Regards
ANJI -
Authorisation object for Case Management
Hi Gurus.
I need to create authorisation object for Case Management,
SCMG_T_CASE_ATTR-CATEGORY Field,SCMG_CATEGORY element,
I use the tx SU21 and Su20, asigned this object to Role. But no WORK.
In the Su20:
Field Name: ZCATEGORY
Data elelment: SCMG_CATEGORY.
Table Name: SCMGATTR_CATEGO.
In the SU21:
Object: ZCASE
Class: AAAB
Field Name:
ACTVT
ZCATEGORY
When I use tx SCASE, The condition not work.
I use the field name ZCATEGORY because the field name CATEGORY was used by SAP. But for USC_Y_CONT_CATEGORY element
Edited by: Alfredo on Aug 1, 2008 5:39 PMHi Alfredo,
Go to SU24 tcode and see if the transaction SCASE is being check/maintaned to the authorization object ZCASE.
If not then you need to do that so that when you add the tcode SCASE to a role then you will see the authorzation object ZCASE which you have created. You can edit the role and change the authorizations for the field, ZCATEGORY and maintain.
Generate the role and then assign it to the user. I think it must work.
If it doesnot work then as Alex said, you need to go and look where the Authority check statement is placed in the program behind the SCASE tcode.
Hope this helps.
Regards,
Kiran Kandepalli. -
Authorisation object for cost center
Hi all,
I need to know the authorisation object for the field COST CENTER in ME21N(creation of PO) screen. How to find it? Since I am creating roles for users with help of BASIS I need to know it. I need to restrict the values for the cost center field while creating the purchase order.
Thanks in advance.
Regards,
RajHello,
Master Data:
CO: Cost center master (K_CSKS)
CO: Cost center groups (K_CSKS_SET)
CO: Cost element master (K_CSKB)
CO: Cost element groups (K_CSKA_SET)
CO: Activity type master (K_CSLA)
CO: Activity type groups (K_CSLA_SET)
CO: Statistical key figures (K_KA03)
CO: Stat. key figure groups (K_KA03_SET)
Planning:
CO: Version (K_KA09_KVS)
CO: Planner profiles (K_TKA50)
CO: Cost center planning (K_CSKS_PLA)
CO: Cost element planning (K_CSKB_PLA)
CO: Budgeting (K_CSKS_BUD)
Regards
Mahesh Naik -
Authorisation object for controlling te changes to "Delivery completed indi
hi
I want to know the authorisation object for controlling te changes to "Delivery completed indicator" in PO.
I want to give the authorisation to change to certain users only.
Best regards
SarThere is no authorization at field level.
Either the user has authorization to change an order or not. -
Authorisation object for field level
Hi all,
In support desk ,Is there any authorisation object for controlling field level changes such as category or priority by message processors.
BalamuruganHi.
Not that I know of. I was also looking for something like this and could not find anything.
I think there is even no logging if someone makes any changes to those fields. -
How to create authorisation object for report
hi
experts..
hw can u create authorisation object for the custom report.
Thanks& Regards
SpandanaHi,
In general different users will be given different authorizations based on their role in the orgn.
We create ROLES and assign the Authorization and TCODES for that role, so only that user can have access to those T Codes.
USe SUIM and SU21 T codes for this.
Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction.
If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check.
This means you have to allocate an authorization object in the definition of the transaction.
For example:
program an AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT <authorization object>
ID <authority field 1> FIELD <field value 1>.
ID <authority field 2> FIELD <field value 2>.
ID <authority-field n> FIELD <field value n>.
The OBJECT parameter specifies the authorization object.
The ID parameter specifies an authorization field (in the authorization object).
The FIELD parameter specifies a value for the authorization field.
The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields.
http://help.sap.com/saphelp_nw04s/helpdata/en/52/67167f439b11d1896f0000e8322d00/content.htm
To ensure that a user has the appropriate authorizations when he or she performs an action, users are subject to authorization checks.
Authorization : An authorization enables you to perform a particular activity in the SAP System, based on a set of authorization object field values.
You program the authorization check using the ABAP statement AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT 'S_TRVL_BKS'
ID 'ACTVT' FIELD '02'
ID 'CUSTTYPE' FIELD 'B'.
IF SY-SUBRC <> 0.
MESSAGE E...
ENDIF.
'S_TRVL_BKS' is a auth. object
ID 'ACTVT' FIELD '02' in place 2 you can put 1,2, 3 for change create or display.
The AUTHORITY-CHECK checks whether a user has the appropriate authorization to execute a particular activity.
This Authorization concept is somewhat linked with BASIS people.
As a developer you may not have access to access to SU21 Transaction where you have to define, authorizations, Objects and for nthat object you assign fields and values. Another Tcode is PFCG where you can assign these authrization objects and TCodes for a profile and that profile in turn attached to a particular user.
Take the help of the basis Guy and create and use.
Sy-SUBRC values
4 User has no authorization in the SAP System for
such an action. If necessary, change the user
master record.
8 Too many parameters (fields, values). Maximum
allowed is 10.
12 Specified object not maintained in the user
master record.
16 No profile entered in the user master record.
24 The field names of the check call do not match
those of an authorization. Either the
authorization or the call is incorrect.
28 Incorrect structure for user master record.
32 Incorrect structure for user master record.
36 Incorrect structure for user master record.
http://www.sap.ittoolbox.com/groups/technical-functional/sap-basis/please-how-to-create-an-authorization-object-386391 - 78k -
http://www.sap-abaprogram.blogspot.com/2007/11/what-is-use-of-
authorization-checks-to.html - 75k -
www.sapworld.hpg.ig.com.br/download/ab4query.pdf
with thanks,
Abaper. -
My requirement is:
The user of a particular plant should be able to get the dispatch details for that Plant only.
Use the Authorization object .
The filed WERKS is not used anywhere else in the list expect for select options.Hi
*& Form sub_check_auth_iwerk *
This form checks authorization for plant. *
FORM sub_check_auth_iwerk .
--Constant for t code, no tcode hence value = '' (all)
CONSTANTS: lc_tcd LIKE tstc-tcode VALUE '*'.
*--Table for all the plants in selection screen. This
table will be used for authority check.
DATA: BEGIN OF li_plant OCCURS 0,
iwerk LIKE t001w-werks,
END OF li_plant.
*--Select query to pick plant from table t001w
SELECT werks "Plant
INTO TABLE li_plant
FROM t001w
WHERE werks IN s_iwerk.
LOOP AT li_plant.
AUTHORITY-CHECK OBJECT 'I_SWERK'
ID 'TCD' FIELD lc_tcd
ID 'SWERK' FIELD li_plant-iwerk.
*--Check SUBRC
IF sy-subrc NE 0.
*--No Authorization for Plant
MESSAGE e016 WITH li_plant-iwerk.
ENDIF.
ENDLOOP. "loop at li_plant
ENDFORM. "sub_check_auth_iwerk
Try this link also:
http://help.sap.com/saphelp_47x200/helpdata/en/52/67167f439b11d1896f0000e8322d00/frameset.htm
http://help.sap.com/saphelp_erp2005/helpdata/en/ef/4aba3b3bf00152e10000000a114084/frameset.htm
go through this link hope this would help you to give the idea about authorization object,
http://help.sap.com/saphelp_nw04s/helpdata/en/9f/dbaccb35c111d1829f0000e829fbfe/content.htm
http://help.sap.com/saphelp_nw04s/helpdata/en/9f/dbacbe35c111d1829f0000e829fbfe/content.htm
http://www.guidancetech.com/people/holland/sap/abap/
Regards
Neha -
How to find out Authorization Object for Plant
Hi,
I have to implement an Authorization check for Plant in My Report Program.
Is there any transaction which can help me to find out Authorization Object for any field like Material and plant?
Thanks,
MamtaUsing SU21 u can create Authorisation Object.
The ABAP command AUTHORITY-CHECK is used for performing authorizaton checks in programs.
check f1 help on AUTHORITY-CHECK for the syntax.
check these links
link:[http://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c;jsessionid=(J2EE3417500)ID1605942050DB11298929682009193279End] -
Authorisation object for Supplier field in Shopping Cart
Hi Team,
In Shopping Cart Source of Supply tab field Supplier is not getting displayed as it in hidden for some users, sor those users an authorisation object has to be provided to display the Supplier field.
Can you please Suggest me the authorisation object to be used to display Supplier field in Source of Supply tab of Shopping Cart.
Thanks & Regards,
Goutam Kolluru.Question is solved.
Answer can be find in bellow link
Field Supplier is not displaying in Shopping Cart with Std Roles SRM 7.0
Maybe you are looking for
-
How do I get my keyboard hotkeys to work on itunes while it's minimized?
On my keyboard I have keys for the normal stuff (pause, play, stop, forward, back) and they all work with itunes but only if itunes is open...which sort of defeats the purpose. Is there a way to get them to work while itunes is minimized to the tray?
-
Hi all, Might you explain to me in two lines in order that they are these modules? And if you know it which are the typical transactions codes that are in use in them? FM, SD, WM, BC, BI, CS and PS Thanks !
-
help
-
Superdrive replacement not working? Try "repair disk permissions"
Like many other folks, the superdrive in my iMac 7,1 died. I ordered a replacement from Powerbookmedic and installed it following ifixit's guides. Upon booting the iMac I found that the SuperDrive would accept a disc and the iMac saw the SuperDrive b
-
After Effect Problem when Start program
Hello I've problem with Adobe after effect 7.0 pro (and cs3) I've Install it and Run Program for first time ( I never used it before this is the first time I run it ) and It says "Adobe After Effect Warning : Unable to create font" It's not error mar