Authorization for Query execute

Similar Messages

• Authorizations for Query loading

  Hi,
  We provided the authorization for EP screen and backend is BW while opening an screen we are getting an error " no authorizations for Loading a query" please can anyone will help me for this.. which authorization is require for laoding up query...
  Thanks
  Sonu

  Hi,
  Please create a role for the reporting user in T code PFCG.
  Assign execute authorization for the query using authorization object
  S_RS_COMP and S_RS_COMP1.
  Assign the role to the user.
  Basic idea is to make sure the user has execution authorization for the query you are running in Portal.
  Please see below link
  http://help.sap.com/saphelp_nw70/helpdata/EN/f8/7913426e48db2ce10000000a1550b0/frameset.htm
  Regards,
  Nitin

• Authorization for query

  Dear Experts,
  If i do not have access to S_RS_COMP for activity 16 (Execute) but i have full authorization for S_RS_BCS for broadcasting can I broadcast queries.
  Thanks,
  Mihir

  Authorization for a query fully depends on these BEx related authorization objects.
  S_RS_COMP, S_RS_COMP1, S_RS_MPRO, S_RS_ICUBE.
  you have to mention your info area and info cubes, where your query was built on.
  if you are not having access to S_RS_COMP with activity 16(execute), or if the auth object S_RS_COMP1 is missing. you cannot execute queries at all.
  Even broadcasting depends on this authorization. i think you cannot execute or broadcast queries.
  Please raise a ticket to your BASIS team and request them to give display and execute access to you.
  Hope this would help you more.

• Customization of "No Authorization" for Query in BI!!!

  Hi,
  Have a query on when we get a no authorization for a query in BI. Can we customize the error message or create pop up in analyzer to show the user that he does not have access to a particular value like a Company Code etc.
  Also is it possible to show data to the user for which he is authorized even if he has put in fields to which he has no access.
  Thanks,
  Yogesh

  May be you can try Authorization Fill variable.
  To see what the user ID is Authorized to see use RSECADMIN (Only in BI7.0) and see for Error Logs under Analysis.
  AB

• Authorization for Query Owners

  Dear Friends,
  We have created a authorization using the below values.
  1.Our requirement is users should not be able to change business content queries
  2.They should be able to save as business content queries as Z queries and they should be able to change it according to their requirement.
  3.Users should be able to create their own queries and they should be able to change their own queries.
  First two works well with the below values, but thrid requirement doesn't fullfilled.
  Issue is users able to create/save as query's.But users unable to change their own queries.It says "You dont have authorization to change". Everytime they have to save as a new query and need to change it.
  Please verify the below values and suggest is something we have missed:
  S_RS_COMP:01(Create),03(display),16(Execute),22(Enter,Include,Assign)
  Infoarea:*
  Infocube:*
  Name of a reporting compo:*
  Type of Reporting Component:CKF,REP,RKF,STR
  S_RS_COMP1:02(Change),03(Display),16(execute),22(Enter,Include,Assign)
  Nameid of Repor comp:*
  Type of Reporting Compo:*
  Owner :$USER
  S_RFC:
  Activity:*
  Name of Rfc :*
  Type of RFC:*
  (If we are not maintaining S_RFC getting an error message when opening BEX)
  Thanks,
  Soujanya

  Hi,
  You will have to introduce S_RS_COMP and S_RS_COMP1 a number of times and provide different values for component type, activity and component name.
  There is a good example in 'help.sap.com' - you can see this by following the path:
  SAP BIW -> Data warehousing -> Data warehouse management -> Authorizations -> Authorisation for working with BEx -> Example for reporting authorisations.
  Hope this helps.
  Pinaki

• No authorization for query/Web application assigment in roles

  Hi All,
  in order to clean/reorganize our roles, I have to clean some query/Web application/Workbook assignment in roles. After I have loged in into BEX Browser I have cleaned/moved some objects from roles. But it seem that I have not all necessary rights to do that.
  Which is the relevant authorization object which I need to change query assignemnt in roles?
  Is there an other way to add/remove queries/Web applications from roles?
  Any help would be great. Thanks in advance.
  Best regards,
  Stefanos from Munich/germany.

  Hi,
  try : S_USER_AGR
  hope it help's

• Limit the Resultset fetch for query executed

  We have few reports on our dashboard that return huge amount of data. The query takes a lot of time to return the data.
  We wanted to check if there is a way we could control the resultset being returned during the query execution. For example - if our report query returns about 10,000 rows of data but in our report we are initially showing only 1000 and giving user the pagination feature to view the data. Can we control the first time data fetch for the SQL. We want the SQL to fetch only 1000 rows first so that it returns the resultset soon. After clicking on the pagination then the entire resultset can be returned.
  We found a variable - VIRTUAL_TABLE__PAGE_SIZE in the NQSCOnfig.INI file. Is this something we need to use or does OBIEE offer any other option?
  Please suggest
  Thanks.

  You can also create an Oracle profile with limited resources and assign it to the Oracle account running the queries (this profile will be used for all queries run by the corresponding user). Resources can only specifed in cpu time (not elapsed time) or logical reads.
  See http://download-uk.oracle.com/docs/cd/B10501_01/server.920/a96521/users.htm#15451
  and http://download-uk.oracle.com/docs/cd/B10501_01/server.920/a96540/statements_611a.htm#2065932

• Query Authorization for acessing , modification

  Hai
  I created the InfoCube and Query . I want give query auhtorization and query access and query modifications to some superusers.
  How can i give tht authorization to superuser. Pls tell me in step-by-step.
  I will assing th points
  kumar

  Hi,
  You have to provide authorization for The Query & Cube.
  1. Add the query/Workbook to the role in PFCG.
  2. Create/ Assign Authorization profile.
  3. Assign Authorization objects S_RS_COMP & S_RS_COMP1
  4. Provide desired authorization for Diaplsy,Execute etc.
  Regards
  SS

• Problem wih analysis authorization for two scenarios on same data provider

  Dear all,
  I am looking for a solution on the following authorization scenario (using the new analysis authorization). Unfortunately everything that I tried did not work out as expected:
  User A is allowed to manually access query 1 (based on cube A) with authorization on all sites A-Z
  The same user A shall get an email distribution automatically (derivation of the filter in the query out of the authorization) for query 2, which is as well based on cube A, but this time the authorization shall be limited only to site A.
  As both queries are based on the same infoobject (0PLANT) and the same infoprovider (0TCAIPROV) I always get the result for all sites A-Z. The 0TCAACTVT is in both cases 03 (display), so I have no chance to distinguish between reporting and email distribution.
  Probably the only chance would be to derive the values for the email distribution scenario not from the authorization directly, but using a customer exit to fill the filter - but I would prefer a "standard" solution...
  Any ideas??
  Thanks,
  Andreas

  Dear Andreas,
  Before give you an alternative for you problem, Iu2019d like to comment the combining authorization concept:
  http://help.sap.com/saphelp_nw70/helpdata/EN/46/98cd87f37d19ace10000000a11466f/frameset.htm
  For this reason I suggest you which combing restriction through authorization and query filter. For query 2 try to use in 0PLANT characteristic the single value u201Csite Au201D, this restriction give you only authorization for see this value.
  Otherwise, you have to use customer exit.
  I hope that alternative help you to find a solution,
  Luis

• Authorizations for Broadcasting

  Hi,
  When I click on the Send button in BI web, in Bex Broadcaster window, a message is displayed "You do not have authorization for Display" "No authorization for Query". The "Create New Setting" button is also disabled.
  Please can anyone let me know what authorization is required to broadcast the reports.
  Regards,
  Nisha

  Hi Nisha,
  You would need the authorization to the query or web template or any BEx object that you are trying to broadcast.
  Check this by running that object. ie running the query in BEx analyzer (You should not get an authorization error here)
  To create a broadcast setting you need authorization to object S_RS_BCS
  Filed name - Activity - Full authorization  ( Create or generate & Delete )
  To schedule broadcast setting S_RS_BCS filed RS_EVTTYPE. Again give yourself full auuthorizaton.
  Fianlly, you need the authorization for authorization object S_RS_ADMWB for field RSADMWBOB BR_SETTING and Activity - Full authorization.
  Hope it helps,
  Best regards,
  Sunmit.

• No authorization for the component (query name)!

  Hello all,
  when i am publishing the query in web, the following error message is displayed!
  "No authorization for the component (query name)!"
  i had installed and configured everything here, so the person responsible for authorization is none other than me. what i shud do now? shud i add any other authorization profile to the username created? or still any configuartion is required?
  please let me know!
  Thanks,
  Ravi

  Hi ARK,
  thanks for the info.
  i had assigned SAP_ALL and SAP_NEW profiles to the user.
  let me say clearly that when i am executing the Query in the designer it is working fine,no issues in Bex browser too. but when i want to publish safely exexuted query in web (clicking the button publish the query in web) i am getting the above mentioned error!
  do suggest me what is the authorization profile that is needed to serve my purpose?
  hope this time i am clear!
  Ravi

• Error when Executing the Report - No Authorization for Multiprovider

  Hello Experts,
  After the upgrade has carried out in my Quality system, I'm unable to execute a query because of the authorization issue with Multiprovider. But earlier the same Authorization was assigned to the my ID.
  The Role in Q and the Role in P is same. Right now P is with 3.1 and Q is with BI7.
  In both the system I have the same Role. But in Q it says that: Error You have no Authorization for Multiprovider XXXX
  This is happening for only one Multiprovider in Quality system. There is no change in the Multiprovider from earlier structure to the present structure.
  Can anyone give me any idea as to how to solve this issue?
  Many thanks in Advance..
  Thanks
  Raman.. This is Emergency for me..

  Ok,
  Pick up a test user (or your user) and go to transaction su01.
  Check the roles that are assigned.
  Double-click in each one and choose display. Go to tab authorizations and click on the glasses icon of displaying authorizations data. Then go to menu->Utilities->Technical names On.
  You should see the tree with the node name Business Information Warehouse (technical name RS), if you don't see this in this role, than the issue it's not in this role, go back to su01 and check another role the same process until you find this node.
  If you expand this node you'll see another nodes, one of them is called Data Warehousing Workbench - InfoCube (technical name S_RS_ICUBE). And you probably can't find another node called Data Warehousing Workbench - MultiProvider (technical name S_RS_MPRO), this is the new node you want.
  In the node S_RS_ICUBE expand it and you'll see the authorizations given to InfoCubes with activity, InfoArea and InfoCube. In the older system BW 3.x this object was used to give access to InfoCubes, but also to MultiCubes. So you have to find the role that has this object with InfoCube with the value of MultiCube or with all values, for example, you could have this node in your role with the following values:
  Activity                       03                 
  InfoCube Subobject     DATA               
  InfoArea                     ZFI*               
  InfoCube                    ZFIAA_C11, ZFIAA_C13, ZFIAA_M02
  or with:
  Activity                       03                 
  InfoCube Subobject     DATA               
  InfoArea                     ZFI*               
  InfoCube                    *
  or with:
  Activity                       03                 
  InfoCube Subobject     DATA               
  InfoArea                     ZFI*               
  InfoCube                    ZFI*
  Something like that. The first example give access to specific InfoCubes and one MultiCube, the second one you'll have all the InfoCubes and MultiCubes inside the InfoArea started  with name ZFI and the third one you'll have all InfoCubes and all MultiCubes started with name ZFI that belongs to the InfoArea started with name ZFI also.
  Got the picture?
  So in BI 7 MultiCubes are now controlled by the new object S_RS_MPRO instead of the older object S_RS_ICUBE. What you should do is go to transaction pfcg and insert the role you want to include (or change these new values, i.e., the role that has the access to the MultiCube values inside the object S_RS_ICUBE which the query is built on) the new object S_RS_MPRO and click on change. Go to tab authorizations and click on change authorization data. Then click on manually (ctrlshiftF9) and insert the object S_RS_MPRO. Inside this new object you should insert the authorization data for accessing your multiproviders.
  In the 3 examples above you should create these 3 entries:
  Activity                          03                 
  InfoArea                         ZFI*
  MultiProvider                  ZFIAA_M02
  MultiProvider Subobject  DATA                              
  or with:
  Activity                          03                 
  InfoArea                        ZFI*               
  MultiProvider                  *
  MultiProvider Subobject  DATA                              
  or with:
  Activity                         03                 
  InfoArea                        ZFI*               
  MultiProvider                 ZFI*
  MultiProvider Subobject  DATA                              
  Therefore you continue to have the object S_RS_ICUBE to control only the InfoProviders plus the new object S_RS_MPRO to control the MultiProviders.
  Now generate the profile(s), save the role(s) and test it again!
  Diogo.

• Authorization for BEX Query

  Hi all,
        I badly need your help.i need to give authorization for a particular query.As of now when i execute that query it gives me "No Authorization" message. what authorization object i need to include in that role? Am sure that there should be some business content authorization object for the current situation.
  Thanks in Advance

  Hi Nanda,
  you need:
  s_rs_comp    -- for querries
  s_rs_comp1   -- for querries including the username, this is usefull if you would like to allow a user to change and create only his/her querries
  s_rs_hier    -- if hierarchies used in the querrie
  s_rs_icube   -- if autorization is switched on for the Cube
  s_tcode for rrmx of course
  s_gui and s_rfc for workbooks
  you can check the authorization process for a user with su53 and rssm
  Regards
  Pierre

• How to define authorization by department for Query in BW

  Hello:
      How to define the authorization by department for Query in BW. as follow:
      The Northern part manager can run any Query, and return the data of Northern part only.
      pls give me the method.
  Regards&Thanks!

  Hi zagory,
  I am assuming that you have some infoobject which contains the department data.
  here is a step by step process to add authorisation on this object.
  1) Define the InfoObject as Authorization Relevant (from the BeX tab in the IO properties.
  2) Create a reporting authorization object for this InfoObject (This would be done through Transaction RSSM).
  3) This new authorization object needs to be added to the relevant roles (Transaction PFCG). For examle your North region manager should be in a role which has access to all the departments in the northern region.
  4) A variable needs to be added to the query. This is required because the query needs to be able to restrict data by department dynamically. You would need to ensure that that the variable you create on the department InfoObject is of type authorisation,can take multiple single values and picks up data from the relevant authorisation object. Just add this InfoObject with restriction on this variable in the filter section in your query.
  5) Finally the new authorization object created in step 2 would need to be assigned to the relevant cubes. This is again done through transaction RSSM. This will force the reporting authorization object to be checked when ANY query on any of these cubes is executed.
  Hope it helps,
  Regards,
  Nikhil

• Error on executing See Also search - no authorization for resource

  Hi there,
  i have installed TREX 6.1 SP 13.
  It searching fine but only two bugs - 1)when i'm clicking on "See also" link in search result page - i'm getting error:
  "Search Failure
  Error on executing See Also search - no authorization for resource
  An unexpected severe error occurred during the search call.  If the situation persists, inform your system administrator."
  2) when i'm clicking on "HTML version" - sometimes i'm getting "No valid content found in store" error message, but it depends on index.
  Any ideas?

  Hello Kwong,
  thanks for responce. Only that i have in log is:
  #1.5#000F20F6A8BD006D000000060000253400040016981EA972#1125996948354#com.sapporta
  ls.wcm.control.util.search.SearchSessionBuilder#sap.com/irj#com.sapportals.wcm.c
  ontrol.util.search.SearchSessionBuilder#Administrator#41230####04c0c6201eb411dab
  6f0000f20f6a8bd#SAPEngine_Application_Thread[impl:3]_0##0#0#Error##Plain###Error
  on executing See Also search - no authorization for resource#
  Moreover, i'm working under administartor with all rights.