Authorization for PO price display ?
Dear Experts:
I want to limit user to see the PO price in ME23N.
Which Authorization object I need to adjust?
Thanks a lot.
Gary
Hello,
Please see the thread [Authorization to hide net price in purchase order;
Thanks,
Venu
Similar Messages
-
FAGLB03 - *"No Authorization for Transfer Prices, Third Local Currency"*
Hi Experts,
I am getting error while process the line item avilable in the T.Code FAGLB03- New GL Display.
When I am double clicking any line item the system giving this below error.
"No Authorization for Transfer Prices, Third Local Currency"
Hope it would be same gap in the configuration level.
Experts, please advice asap.
Warm Regards,
Sivakumar SathiyamoorthyHi,
Note 1238115 - FAGLB03: Authorizations not always checked
Sorry for inconviniecy caused
Regards,
jigar -
Display authorization for particular line of table
Hi Experts,
I have a Z table contains sales area data. I want to display those records only which user has authorization for the sales area. It is possible through the table maintenance event or there is any other way to achieve this.
Quick response will be appreciated.
Thanks in advance for your sincere help.
Cheers,
AnilHi Anil,
Yes,Its possible through table maintainance event itself.
Only thing u need to do is check for the sales area the user is authorized..using
FM: SUSR_USER_AUTH_FOR_OBJ_GET
SEL_OBJECT:- CRM_ORD_OE.
Hope it helps!!
Regards,
PePe -
Hello Expert,
I have a problem with authorization in MDG-F.
I want to create Account with Collective processing. After, entered Entity type, Edition and Chart of account, Blocking message "Data model 0G: No authorization for entity type Account (Company Code) - activity Display" is displayed.
But, i checked in PFCG transaction, for this user profil, activity are : create or generate, Change and display. So, for me , it is correct.
Please, check screen shot below :
Blocking message :
and in PFCG transaction
Could you help me to solve this point?
Kind regards,
Heri RAOELISONHi Heri,
the system behavior is correct. The account in company code consists of three entity types:
1) COA - Chart of Accounts (Type 3)
2) ACCOUNT - Account (A-Segment, related to ECC table SKA1, Type 1)
3) ACCCCDET - Account in Company Code (B-Segment, releated to ECC table SKB1, Type 1).
3) includes 1) and 2) whereas 2) includes 1). If you grant authorization only for 3) but not for 1) and 2), you cannot do anything.
Best regards
Michael -
Authorization control for actual price calculation
Dear all,
I found that there is no authorization control for actual price calculation(KSII), this means user can calculate actual price for all cost centers, even this cost center belongs to other company. Is there a way to control this?
Thanks,
BenHi Ben,
By SAP standard we do not have the control. we also have the same situation. We are venturing in to Realisation phase and we decided to have some kind of program (development) to control this.
Please let me know if you find some better solution
Best Regards
Surya -
HR authorization for Display the documents in SAP DMS
HI experts,
We want to control display authorization depending on the entry made in object link tab in DMS( DOcument Management System). We developed screen for HR master object link. When user executes cv03n and enters document No. system should check hr master number entered in object link. If the user has authorization for that hr master number in PA (personnel administration), then he should be allowed to display the document. Otherwise it should restrict him to display the DIR.
Now my query is how to achieve it. Can anybody provide me some solutions
I have one solution, whenever user enter document number in cv03n screen, system will first check hr master number entered in object link and it will check the Personnel Area, Employee group and employee subgroup aginst this hr master number. Say for ex: PA:1000, EG:1 and ESG:01 for HR number xyz.
Now system should check in roles assigned agaist user id for these PA, EG and ESG values. If user has got authorization for PA:1000, EG:1 and ESG:01 in HR roles,then he should allowed to display the document.
Now my query is how feasible this approach? is this tough task for abaper? or is there any easier approach than this.
regards
shamHi,
Try to use the User Exit: CNEX0002.
Check with your ABAP er for the enhancement.
Hope it helps..
Thanks!!! -
Display Authorization for MASSD
Hi,
There is a requirement for giving a user only display authorizations for MASSD.
I've tried various combinations of objects, however have been unsuccessful so far..
Pls. help.
Thanks,
Saba.Hi Saba,
the proposals (values maintained in SU24) should save time to role administrators.
The developers maintain those values which make sense in their eyes. As example if they provide a transaction for creation of an item, they propably would maintain the activity 01, for a display transaction actvt=03 and so on. That will save time to admins, as they would not have to enter the values once more (compared to an empty field....). Of course, that proposals are still proposals only!
For complex transactions it makes sense, to have a proposal of which authorization objects are necessary to be able to execute that transaction.
Maybe you can remember the old procedure before pfcg had been invented - it was hard work first to identify all the objects checked with its values, then create the corresponding authorizations in SU03, then create the corr. profiles in SU02 and finally assign that profiles to users in SU01. That was really time consuming....
So the invention of pfcg opened a very comfortable and quick possibility for that tasks with a high range of automatism. Of course this automatism can only be as good as the values which are behind it. So having accurate SU24 settings help a lot.
So enjoy pfcg
b.rgds, Bernhard -
AUTHORIZATION FOR DISPLAY ONLY
Hi Friends,
As per your advices I have copied the SAP_ALL_DISPLAY and changed the ACTVT field to 03 for having the Display mode for all the transactions used..
But still there are sone transaction where the user can change like FB 02 ,schedule background jobs etc..
When I have checked the SU24 for the Auth objects...
Some contain the ACTVT fileds as display but some objects does not have the ACTVT fields they have some other things containing the field values as * with full authorization..
My question is can we change this to 3 - for display or any other procedure to track the transactions which are not in display mode and change it accordingly..
Regds,
Satyanarayana N.Hi Satyanarayana,
Unfortunately your best shot will be checking the whole role manually using PFCG and ensure that the role doesn't contain any additional authorizations. Do this by reviewing all the authorization objects.
Regards
Juan -
Display Authorization for webdynpro component
I have a requirement where , the source code has to be hidden . I have seen programs where it hides ABAP report but none for We dynpro. Is there a way to hide web dynpro code . Or is there any way to revoka even display authorization for the web dynpro components ? Please provide any suggestions.
Regards,
SriHi Srivijaya,
Go to application, parameters tab give WDDISABLEUSERPERSONALIZATION give value to 'X'. It will disable user personalization settings, user can't see any help regarding component.
Cheers,
Kris. -
Authorization restriction for PO price change
Hello Experts,
I want to know is there a good way to restrict user authorization about PO price change when user access ME22 and ME22N?
We tried to check the authorization object
M_BEST_BSA
M_BEST_EKG
M_BEST_EKO
and ignore the value 09-display price, is that possible to block the change PO price authority?Dear Asaduzzaman,
You can achieve the same by creating transaction variant using SHD0 transaction.
I think below mentioned document may help you to resolve your issue.
How to Create a Transaction Variant
Regards,
Hardik Patel -
Display authorization for all modules Including Basis.
Hi All,
Is there any Role or profile for display authorization for sap modules .
Regards,
Eswar.Dear,
That ROLE will be SAP_ALL_DISPLAY
"what is to be done"
just assign the role to the display user via SU01
Hope this help!
Also refer this ,
DISPLAY ONLY AUTHORIZATION
Regards,
R.Brahmankar -
WEB UI- only Display authorization for LEADS to users
Hi Gurus,
I have a requirement like i need to give only display authorizations for users to leads.
I have created a new business role and assigned only search links. but in that search link we have Create New option. How i need to disable this.
Users needs only display authorizations for Leads.
Waiting for reply...
Regards,
Ajay.Hi Ajay,
First of all, It is possible to disable the New button on the Search page without any code change. There is an SPRO setting which is to be done in order to achieve this.
You might have created a new z navbar profile as you have created a new business role as per your business requirement.
Lets take an example, you want to disable the New button on Contact Search Page. follow these steps:
1.Go To T. code /ncrmc_ui_nblinks
2. Select the Z navbar profile you have created for your business role
3. Double Click on "Define Generic OP Mapping" in left hand side
4. Select Object Type as BP_CONTACT and remove the Following entry
BP_CONTACT D Create MD-BPCP-CR MD-CONP-SR
Please note the Obj. Action here D Create, if you remove this entry it means you are disabling the Create Action for this business role for object Contact.
Hope this will help you.
Regards
Ajay -
Authorization for display only in tx MIGO
Dear Guru's,
can we give an authorization for display (i.e.Display material document ) only in Tcode MIGO for particular user ,
if possible please let us know the authorization object for the same.
Thanks,
Ashish.Hi,
Create a custom profile via tcode PFCG.
Add the required tcode 'MIGO' to the 'Menu' tab.
Then goto 'Authorizations' and open expert mode for authorization. Here you can control the field values for authorization object. Once done, generate the profile and assign user to role along with user master comparison run.
Regards,
Srikishan -
Display authorization for resource planning missing
Hi,
while open the Resource planner with log in service manager.it is showing following error
Display authorization for resource planning missing
i am not getting this error why it is showing.any one help me to solve this issue
Thanks & Regards
Kishore KumarMaintain the authorization Objects for the PFCG role assigned to the user
Authorization Object
Description
Authorization Field
Value
Value: System
Relevance
WFDS_RPA
Authorization Object Transaction
ACTVT
3
WFD server
Service resource planning application (RPA)
WFDS_RPA
Authorization Object Transaction
ACTVT
2
WFD server
RPA
B_BUPA_GRP
Business Partner: Authorization Groups
ACTVT
3
SAP CRM
RPA
Appointment scheduling
B_BUPA_RLT
Business Partner: BP Roles
ACTVT
3
SAP CRM
RPA
Appointment scheduling
B_BUPA_RLT
Business Partner: BP Roles
ACTVT
3
SAP CRM
RPA
Appointment scheduling
WFDS_JFUNC
Authorization Object Resource (Type of WFD Resource)
WFDS_RTYPE
WFD server
RPA
Appointment scheduling
WFDS_JFUNC
Authorization Object Resource (Job Function)
WFDS_JFUNC
WFD server
RPA
Appointment scheduling
WFDS_JFUNC
Authorization Object Resource (Job Level)
WFDS_JLEVE
WFD server
RPA
Appointment scheduling
WFDS_SAREA
Authorization Object Resource (Type of WFD Resource)
WFDS_RTYPE
WFD server
RPA
Appointment scheduling
WFDS_SAREA
Authorization Object Resource (Service Area)
WFDS_SAREA
WFD server
RPA
Appointment scheduling
S_TCODE
Transaction Code
TCD
/SAPAPO/LRP_ACCESS
WFD server
RPA
Appointment scheduling
UIU_COMP
Authorization UI
COMP_NAME
WCC_SRV_RPA
SAP CRM
RPA
UIU_COMP
Authorization UI
COMP_WIN
WCC_SRV_RPA/MainWindow
SAP CRM
RPA
UIU_COMP
Authorization UI
COMP_PLUG
SAP CRM
RPA
UIU_COMP
Authorization UI
COMP_NAME
WFDRPA
SAP CRM
RPA
UIU_COMP
Authorization UI
COMP_WIN
MainWindow
SAP CRM
RPA
UIU_COMP
Authorization UI
COMP_PLUG
DEFAULT
SAP CRM
RPA
UIU_COMP
Authorization UI
COMP_NAME
WFDRPA
SAP CRM
RPA
UIU_COMP
Authorization UI
COMP_PLUG
DEFAULT
SAP CRM
RPA
UIU_COMP
Authorization UI
COMP_WIN
WFDRPA/MainWindow
SAP CRM
RPA -
Problem wih analysis authorization for two scenarios on same data provider
Dear all,
I am looking for a solution on the following authorization scenario (using the new analysis authorization). Unfortunately everything that I tried did not work out as expected:
User A is allowed to manually access query 1 (based on cube A) with authorization on all sites A-Z
The same user A shall get an email distribution automatically (derivation of the filter in the query out of the authorization) for query 2, which is as well based on cube A, but this time the authorization shall be limited only to site A.
As both queries are based on the same infoobject (0PLANT) and the same infoprovider (0TCAIPROV) I always get the result for all sites A-Z. The 0TCAACTVT is in both cases 03 (display), so I have no chance to distinguish between reporting and email distribution.
Probably the only chance would be to derive the values for the email distribution scenario not from the authorization directly, but using a customer exit to fill the filter - but I would prefer a "standard" solution...
Any ideas??
Thanks,
AndreasDear Andreas,
Before give you an alternative for you problem, Iu2019d like to comment the combining authorization concept:
http://help.sap.com/saphelp_nw70/helpdata/EN/46/98cd87f37d19ace10000000a11466f/frameset.htm
For this reason I suggest you which combing restriction through authorization and query filter. For query 2 try to use in 0PLANT characteristic the single value u201Csite Au201D, this restriction give you only authorization for see this value.
Otherwise, you have to use customer exit.
I hope that alternative help you to find a solution,
Luis
Maybe you are looking for
-
Why getResource of jar in classpath returns null?
When i iterate through the jars in the classpath and try to turn them into URL's via the getResources(), they all return null. What am I doing wrong? (NOTE: It does print out the classpath properly when i print that out) String classPath = System.get
-
CMP additional field in join table
I'm sorry if this question was already post on the forum, but I could not find any answer.... I have an existing application which is using CMP entity beans. A and B have a many to many relation, then the relation is mapped to a join table with 2 col
-
Where can I find a good tutorial that explains the basics of Oracle JDeveloper. I am a Forms developer who is interested in mastering Oracle J Developer. I did learn java a few years ago but have been not in touch with it since then. The information
-
Downloaded Podcast RSS Episode does not stay in the original RSS feed.
Hello, I just upgraded to iTunes ver. 9 on a windows XP PC. Before the upgrade my podcasts would download into the original RSS podcast feed created when I entered the initial URL. Since the update every time the new podcast's is downloaded they diss
-
I've been searching these forums for a while to sort my problem out, alas to no avail. Before installing Leopard I moved my backed-up files to a friend's external hard drive, partitioned my WD MyBook (Mac OS Extended Journaled) and then put the files