Authorization FBCJ for Specific Business Transaction

Dear Guru,
How to create user authorization via PFCG for FBCJ with specific Business Transaction?
I have tried, but I just find authorization FBCJ for Activity (Change, Delete, Post, Read) and Account Type (GL, Vendor, Customer, Material).
Thank you.

Hello,
Normally, for casj journal the suggestion is to introduce segregation of duty. For e.g. the user who create and saves (for review, no document is posted at this point) the cash journal should not be allowed to post (SAP document will be posted) cash journal. Then another user should be assigned cash journal deletion auhtorisation shold related document required reversal. Basically, you should have authorisation for update, post and deletion in seprate user role.
Kind regards,
John Chin

Similar Messages

  • Authorization for specific business scenario or business step in solar01

    Dear all,
    we have an issue regarding solution manager blueprinting management restricting an access to specific nodes. Our goar is to have several substructures devided by modules like: FI, SD, PS and etc. And each team member according his position in a company should have an access only to his substructure and all the related documentation below that. Saying an access means a change mode not a display access.
    Please find the steps have been performed during the configuration of project below:
    All the configuration around system landscape has been done properly.
    A new project for solution was created in solar_project_admin.
    A correct logical componens has been assigned.
    All the required users have assigned as a team members of a project.
    At the projec. team member tab a box has been checked in for: restrict changes to nodes in project to assigned team members.
    A proposed structure of nodes has been created within Tx solar02.
    The right team members have assigned to specific node. So that only they suppose to have a change permission within that nodes. All others read only access.
    Every user has sap_solar01_all role assigned to him. We have tryed assigning varios roles according to  http://help.sap.com/saphelp_sm310/helpdata/en/db/a1033b2a98f46ae10000000a11402f/content.htm
    However as a result we are having a change permission allowed for every node within the structure. Like FI responsible member can access to any node from a tree. And he can make a change for SD related documentation.
    Please assist regarding this issue.
    Kind regards,
    P.S.
    I found a thread with a similar problem which was solved by activating a checkbox which is already activated in our system and actually doesn't solve that problem for us.
    Authorization for specific business scenarios in Solar01/02
    Edited by: Artjoms Nikulins on Mar 11, 2010 3:37 PM

    Hi
    As far my knowldege goes this is not possible to do within same project or making the same.
    You can have project specific access given to member but you cannot go module wise authorization.
    Ofcourse there satellite system authorization will be different but not in solman.
    In addition check this security guide
    https://websmp104.sap-ag.de/~form/sapnet?_SHORTKEY=00200797470000075728&_OBJECT=011000358700007187872005E
    Hope it ans ur query.
    Regards
    Prakhar
    Edited by: Prakhar Saxena on Mar 12, 2010 3:22 AM

  • Offline Interactive Form Upload for creating Business Transaction

    Hi All,
    I am using CRM Web Request for creating Business Transaction through Offline Interactive Adobe Form.
    For that i have done PDF upload coding and then converting the PDF form to XML format.
    Now the XML format of form is converted to string from xstring.
    And then passing the XML to function module CRM_WEBREQ_EXTERN_CREATE_DOC along with the corresponding request category configured for the web request.Created the corresponding request category structure also.
    still the business transaction is not getting created, the following error message is coming "XML incompatible for data structure of request category" .
    Please respond if anybody has done the same scenario.
    Or is there any other process that can be followed to upload offline interactive adobe form to create one order object.
    Regards,
    Madhu

    Hi Maarten,
    Is that aatribute binded to Dropdown field lying under a node of cardinality 1..1??
    I think if that's so, ur error can be resolved by just putting this attribute in a node with cardinality 1..n.
    Hope this helps..!!
    Thanks,
    Amita

  • Datasource for BUS2000249 business transaction catagory.

    Hi Experts,
    I am working on CRM extraction, I need to capture the data from T-Code CRMD_ORDER screen in crm.
    As data is catagorised according to tranasction catagory , I know that 0crm_sales_act_1 holds the data for
    business transaction object type is BUS2000126.
    Similarly I want to know which CRM datasource hold data for BUS2000249 business transaction catagory.
    Acthually i need to capture the Contract data in CRM.
    Thanks
    Mayank

    there is no such BC for vendor available but still you can check out 2LIS_02_S013, 0MM_PUR_VE_01
    and 0MM_PUR_VE_02. They may help.
    for me its good to go for a custom extractor with View based on those table. that will be quick and best.

  • Business transaction type parking permit is blocked for further business transactions

    I have a testing for web request demo-parking permit. When I finished the web table and sent it. System show "business transaction type parking permit is blocked for further business transactions". Could you help check it?

    Hi  Hamendra:
          Thanks for your hint. I have created the web request successful. Next , I have new issue. If I create a web request that be approved. How to send the web request message to inbox which is belong to approver by configuration? Thanks.

  • Authorization Control for Physical Inventory Transactions

    Hello,
    Can we control the authorization for Physical Inventory Transactions especially MI01, MI02, Mi04, MI07, MI08, MI31 etc. at Storage Location level instead of Plant Level.
    If it's not possible at Sloc level does anyone knows the user exit/code we can use enable the authorization check at Storage Location level.
    Regards,

    hi,
    yes u can do it.
    check
    M_MSEG_LGO     Goods Movements: Storage Location
    mvt type 701/702

  • Multiple IC Roles with role specific business transactions

    Hi guru's,
    I'm using CRM 2007 and I have configured two different business roles for the IC as two different groups are to use the IC.
    The business transactions for each group are different and I therefore configured two different business transaction profiles whereby the dependent transaction types are different.
    However I noticed that the IC still displays all transaction types relevant for the IC channel so my question is how do I limit the transaction types that I see in the follow up transaction screen to only the relevant business profile?
    Now both user groups see each others business transactions.
    Thanks,
    John

    Hi,
    As indicated by Glenn above, this can be easily done using PFCG. In PFCG you can give access at transaction type level.
    Hope this helps.
    Thanks!
    Amrut

  • Approval Procedure for Specific Business Partner

    Dear Experts,
    Good day!
    Is it possible that a certain approval procedure for credit memo will trigger only once a specific business partner is used?
    Thanks!
    Ashley

    Yes, Ashley.
    Its possible through Approval procedure based on query.
    Please use below query for the same. replace hard coded vendor code with actual Vendor codes.
    SELECT Distinct 'True' where $[$4.0.0] in ('V23000','V10000')
    If you need to make it more systematic, then create one flag in BP master, "Approval required Yes/ No" and create a new query for this. So you need not amend the query later
    Thanks
    Unnikrishnan

  • 0 records for particular business transaction type in 0CRM_SALES_ACT_1 extr

    Hi experts,
                      I have 2 custom defined Business transaction types in CRM called ZPFS & ZFSR, transactions for these types comes under sales activity module of CRM. Data is available for both the trans types but when I try to extract data for them using 0CRM_SALES_ACT_1, always 0 record comes.
    I have checked other business trans types from the same data source and data is coming for all of them. I tried to execute extractor in debug mode but NOT ABLE TO UNDERSTAND the code. Please help me in this regard.
    Regards,
    Priyanka Joshi

    Hi,
    I am having the same problem for 0CRM_SALES_ACT_1 datasource. Not able to get records for certain transaction type corresponding to interaction records. Can you please let me know if this has been resolved and how?
    Thanks
    Pooja

  • Need to hide tabs in CRM 5.0 SAP GUI for a business transaction

    Hi all,
       I've created a custom complaint transaction in CRM 5.0, and I need to hide some tabs and fields when I create it or edit it via SAP GUI. I've searched through the help, and I figured out that probably I have to use transaction CRMV_SSC, but than I'm blocked.
    Has anyone some hints or guides that can help me?
    I you have any documentation, please send to [email protected]
    Thank you a lot,
    Daniele.

    Hi,
    if you activate the technical names in the menu, you'll see that transction for maintaining sales transactions is called:
    crmd_bus2000115
    So there you have it, it's BO BUS2000115
    regards, Rob Dielemans

  • Authorization Object for specific Output types maintained via MN11 & MN12

    Hello,
    I was looking to see if we could limit the access of users so that they can change only specific output types (see T-code NACE) when using transaction code MN12. specifically only LPH1 (standard SA output type). I'm not seeing anything within the system, and I can't seem to find anything via SNC which describes this, so I am wondering if this there is nothing like this/
    Is anyone aware of something for this or a potential solution if an authorization object doesnt exist?

    duplicate.. please close.

  • RFC-enabled authorization checks for specific tables?

    I am developing an Excel application which calls several BAPIs and RFC-enabled FMs, most notably RFC_READ_TABLE.  While I will provide security at the FM level by checking S_RFC for these FMs, I need to find a way of restricting access for users to specific tables based on certain table fields?  Is there any SAP-delivered FM/BAPI that will let me do this?
    My understanding is that although RFC_READ_TABLE does check S_TABU_DIS, it only checks tables based on their belonging to a particular table class—It is not checking authorization for an individual table. What this means is that users will need to have access to the table class or classes to which the table or tables belong, for any tables that are being read by RFC_READ_TABLE.
    Please correct me if I am wrong in my understanding, or if there is a standard solution for a situation like this.

    Hi john,
    1. What this means is that users will need to have access to the table class or classes to which the table or tables belong, for any tables that are being read by RFC_READ_TABLE.
    U are perfectly right.
    2. The users will have to be given rights
       NOT TABLE WISE,
       But authorisation group wise.
    3. Note : S_TABU_DIS
       The main purpose of this authorisation object
       is for standard tools like sm30 only.
       Its also used in the FM RFC_READ_TABLE .
    regards,
    amit m.

  • OIM Authorization policy for specific resource

    Hi gurus,
    Can we create an authorization policy in OIM 11.1.1.5 for allowing resource administrators to add/modify a specific resource only?
    Example: For all users, Admin user-A should be able to add/modify AD resource only.
    Admin User-B should be able to add/Modify iPlanet resource only
    Thanks in advance.
    -J

    OIM 11.1.1.5 authorization policies do not extend to resource operations, only operations on OIM users and roles. For restricting operations on resources you can set data object permissions on the resource objects themselves. An alternative approach in OIM 11.1.1.5 is to provision resources via requests, where you can limit requests to work with specific allowed resources and be accessible to specific administrators.

  • Achieving deep link in ICSS for a business transaction

    Hello Experts,
    Whether SAP supports the deep link option like,
    Is it possible for the user to directly navigate to a CRM transaction Id (Ex.service ticket no.) via an email content after login.
    I tested the URL generated in history section of SAP standard ICSS B2B application. It logs in to the application normally but how can we directly take the user to view the Service ticket in this case.
    If anybody has done this kindly share the way you've implemented.
    Your inputs would be highly appreciated.
    Thanks,
    Senthil.

    Created a custom class & achieved by passing the transaction id

  • Invoice2Xml for specific Business Partner

    Dear Experts,
    I would like to know how do I configure my Invoice2Xml scenario to B1if create files when the Documents posted to specific CardCode. Now the B1if create xml from every documents created in the system.
    Thank you in advance.
    Nghia

    Yes, Ashley.
    Its possible through Approval procedure based on query.
    Please use below query for the same. replace hard coded vendor code with actual Vendor codes.
    SELECT Distinct 'True' where $[$4.0.0] in ('V23000','V10000')
    If you need to make it more systematic, then create one flag in BP master, "Approval required Yes/ No" and create a new query for this. So you need not amend the query later
    Thanks
    Unnikrishnan

Maybe you are looking for