Authorization for reading Authorization object

Hi,
I've a query with Company Code authorization variable and a HRU hierarchy node variable which is for one of the attributes of company code.
When I try to run the query with entering values only in HRU variable it gives me following error.
You do not have authorization to read object ZCOCD01 'Authorization by Company Codes 1'
Can anybody tell me which authorization object I should use to read authorization object.
Regards,
Amit

Hello
Try with RSECADMIN
Enter the user concerned (flag the log) and then Run the query you want.
Authorization will be displayed in the report
Rgds

Similar Messages

  • How to get all authorization objects for a certain authorization profile

    Hi ABAP experts,
    I have the following problem: for a certain authorization profile of a role (created with transaction PFCG) I would like to get all contained authorization objects: e.g. for the contained object PLOG I would like to know/read all corresponding parameter values.
    So:
    - where are these values stored (dictionary table)?
    - is there already a FM or a report to read all authoriation values for a certain authorization profile?
    Thanks in advance.
    Best regards,
    Oliver

    Hi,
    check the following it might useful for you:
    https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c
    if helpful reward points are appreciated

  • Authorization object for print preview

    Hi
    I am looking for the authorization object to restrict print of the document.
    Please help me.
    Regards
    Raju

    You can restrict with this object S_SPO_ACT (Spool: Actions)below mention activity
    ATTR     Change order attributes
    AUTH     Change authorization field
    BASE     Visibility
    COMP     Use as components of composite request
    DELE     Delete
    DISP     Display contents
    DOWN     Download
    EDIT     Change contents (currently only for composite requests)
    PRNT     Print once
    REDI     Divert to same printer type
    REPR     Print several copies
    SEND     Send to SAPoffice
    USER     Change owner
    You can restrict device name & type under the object  S_SPO_DEV(Device authorizations)
    You can restrict  Restriction on Maximum Number of Pages  under this object S_SPO_PAGE(Restriction on Maximum Number of Pages)

  • Authorization object  for PLANNING PLANT

    Hi all,
    My client has different Planning plant & Production plant.
    If I need to give access to GR for order (MB31), how do I know the authorization object for the Planning plant.
    User should be given access to MB31 to the Planning plant & NOT to the Production plannt.
    Any idea where we could find the authoriz. objects for a particular field?
    Pls advise.

    Goods Receipt for Production Order: Movement Type            M_MSEG_BWF
    Goods Receipt for Production Order: Plant                    M_MSEG_WWF
    these are the authorisation objects with activities as  ACTVT and WERKS
    Maintaine the values for ACTVT  as
    01 Create or generate,
    02  Change
    03 Display
    04 Print, edit messages
    and maintaine the values WERKS   (ur plants 4 which u want to give authorisations)
    and BWAR ( movement types 4 which u want to give authorisations)

  • Need authorization object for relaese of Invoice to accounting

    Dear Folks,
    Could you please let me know the authorization object which is available in standard SAP which restricts users from release of invoice to accounting and should have authorization to change the invoice....Pls don't forward  generic reply's...tried with available authorization objects using tcode SU24...for tcode VF02.
    Regards,
    Kishore

    Hi,
    See the program :   MV60AF0V_VBRK_BEARBEITEN
    Freigabe für Buchhaltung ( Accounting for release)
    ENHANCEMENT 65  OIC_SDP_SAPMV60A.    "active version
    *Coding for Invoice Approval Process.             "SDP-BILLING
        IF TVFK-OIINVAPP EQ CHARX.
          PERFORM RELE_AUTH_CHECK.
        ENDIF.
    ENDENHANCEMENT.
    Here incorporate your Z authorisation object or you can use any of the standard one.
    So that it will check the authorisation object before posting the same.
    Hope this will resolve your problem.
    regards,

  • Authorization Object for Clear G/L account (trx F-03)

    Hi,
    my client wants need to restrict some G/L accounts for certain company codes when clearing G/L accounts. In other words, I need to check that some users are cannot clear (trx F-03) some G/L accounts for some company codes.
    I have reviewed the authorization objects (FI & FI_T) and I could not find one for that purpose. It seems that 'clearing' is not an activity for authorizations as create, display, delete, post... are.
    Do you know if an authorization object (or activity) for clearing G/L account exists?
    Thanks you in advance
    Rafa

    ST01 shows all the objects checked in F-03 from calling the transaction, through simulation, till clearing:
    S_TCODE    RC=0  TCD=F-03;          
    F_BKPF_BUK RC=0  ACTVT=01;BUKRS= ;  
    F_BKPF_BUK RC=0  ACTVT=01;BUKRS=1000; 
    F_BKPF_BUK RC=0  ACTVT=01;BUKRS=2000; 
    F_BKPF_BUK RC=0  ACTVT=01;BUKRS=2000; 
    F_BKPF_BUP RC=0  BRGRU=0001;  
    S_TCODE    RC=0  TCD=F-03;              
    F_BKPF_BUK RC=0  ACTVT=01;BUKRS= ;      
    (I have cleard an account between company code 1000 and 2000.)
    Activity "post" means in this case "clear". There is no different activity for clearing.

  • Authorization Object for Storage Type

    Hi Experts,
    We want to restrict the goods movement based on storage type. Does anybody know what authorization object we can use to implement that?
    Any help is greatly appreciated.
    Thanks,
    Khan

    Hi,
    At PFCG, go to authorization profile you want to restrict, look for M_MSEG_LGO Authorization Object, at the storage location field assign it. If you only want to restrict it for few user use, remove those from unauthorized user profile.
    Hope it might help.

  • Restricting the authorization Object for B2B Transactions

    Hi All
    we are facing the problem in the ISA b2b app, actually the scenario is as below.
    we have various transaction types like b2b sales,Peoplesoft order,Request for Order change, RMA ,Request for Quotation(RFQ) and metel order.
    As per the requirement, The client wants only a few functionalities for a particular user.
    Example:
    Transaction Type Authorization
    PeopleSoft order View only View only
    B2B:Req. OrderCh x x
    B2B: Req. RMA
    B2B: Req. Quote x x
    Metel Order x
    For b2b sales transaction a lower level employee would only be able to view the order and he should be restricted to make any changes. Is there a posibility to restrict in this manner? This is Urgent. Please respond immediately. Thanking you in anticipation.
    Message was edited by:
    Sunil Kumar

    >
    Viral741 wrote:
    > Hi All
    >
    > I have a requirement in SAP Security to restrict the authorization object S_ALV_LAYO to a particular set of users.
    >
    > Background:
    >
    > We use composite roles which is shared accross all areas(Finace,marketing,work managment).Now the requirement is for from Work managment to restrict S_ALV_LAYO so that user cant change default layout and can create user specific layout,but other areas are not ready for this.So please let me know if there is any way i can restrict this auth object only for work managment area only.
    >
    > Thanks,
    >
    > Nitesh
    Nitesh,
    Remove access to S_ALV_LAYO for general users and give access to F_IT_ALV instead.  Keep S_ALV_LAYO for the users who will be maintaining the default layout.
    Good Luck!

  • Authorization object for purchasing

    Hi Sap gurus,
    Can someone tell me please how I can find suitable authority check object for purchasing? I created report for purchase orders history and now i would like to implement also authority check. I would like to check authorizations for purchasing groups, cost centers, orders types...
    Do you have any example? Where to put this authority check into the program?
    Thanks in advance, points granted,
    BR
    Saso

    hi,
    for purchasing grp object is: M_BEST_EKG
    put authority check after selection screen
    write
    at selection-screen.
    perform authority_check.
    form authority_check
    AUTHORITY-CHECK OBJECT 'M_BEST_EKG'
             ID 'ACTVT' FIELD '03'
             ID 'EKGRP' FIELD pr_ekgrp.
    if sy-subrc <> 0.
    error msg.
    endif.
    endform.

  • Maintain assignments of authorization objects for Z Webdynpros in SU24

    Hello experts,
    When we display the assignments of authorization objects for External Services -   Webdynpros in transaction SU24,  Z_webdynpros are not shown in the screen.
    We need to add more webdynpros in that table.
    I suposse that there must exist a way for updating that table with the Z webdynpros developed or some configuration is needed.
    Thanks in advance...
    Hector Longarte

    The Zwebdynpros I am talking about are Java Webdynpros in the SAP Portals, and the SAP ERP is onlyan ABAP stack.
    Is this configuration posible??

  • Custom Authorization Object for HR

    Hi,
    As per our Company's internal needs I have created a Custom Authorization Object for HR named ZP_ORGIN (it has Personnel Subarea field BTRTL besides what's there in Auth. Object P_ORGIN) and made it Check/Maintain for transaction PA30 in SU24.
    I can see the entries in the USOBT_C & USOBX_C tables for this object, I am also able to add this object in the roles as well.
    Everything looks fine, but when I execute the transaction & do a trace on it, the object ZP_ORGIN is never checked (for a user having this object in his/her User Master). Only P_ORGIN object is checked instead.
    I believe I'll have to write some ABAP code e.g. AUTHORITY-CHECK OBJECT 'ZP_ORGIN' etc. Can anybody tell  which User Exit or Field Exit I'll have to put the AUTHORITY-CHECK code in, so that my new custom authorization object is alwayz checked.
    Your help will be appreciated.
    Thanks,
    Mandeep Virk

    Hi,
    I have created a Custom Authorization Object for HR named Z_ORIGIN (it has Personnel Subarea field BTRTL besides what's there in Auth. Object P_ORIGIN) and made it Check/Maintain for transaction PA30 in SU24.
    I can see the entries in the USOBT_C & USOBX_C tables for this object, I am also able to add this object in the roles as well.
    Everything looks fine, but when I execute the transaction  the object Z_ORIGIN is never checked (for a user having this object in his/her User Master). Only P_ORIGIN object is checked instead.
    We've ran the report RPUACG00 also which is mentioned in this thread.
    We also coded the authority check code in the both user exit ZXPADU01 and ZXPADU02 for PA infotype operations
    I believe I'll have to write some ABAP code e.g. AUTHORITY-CHECK OBJECT 'ZP_ORGIN' etc. Can anybody tell which User Exit or Field Exit I'll have to put the AUTHORITY-CHECK code in, so that my new custom authorization object is alwayz checked
    but still it is taking the P_ORGIN object.

  • HR Authorization : Custom Authorization Object  for P_ORGIN

    Hi,
    I have created a Custom Authorization Object for HR named Z_ORIGIN (it has Personnel Subarea field BTRTL besides what's there in Auth. Object P_ORIGIN) and made it Check/Maintain for transaction PA30 in SU24.
    I can see the entries in the USOBT_C & USOBX_C tables for this object, I am also able to add this object in the roles as well.
    Everything looks fine, but when I execute the transaction the object Z_ORIGIN is never checked (for a user having this object in his/her User Master). Only P_ORIGIN object is checked instead.
    We've ran the report RPUACG00 also which is mentioned in this thread.
    We also coded the authority check code in the both user exit ZXPADU01 and ZXPADU02 for PA infotype operations
    but still it is taking the P_ORGIN object

    Online Help
    <a href="http://help.sap.com/saphelp_erp2005vp/helpdata/en/d9/64141c0774194593da29f3cb813f1b/frameset.htm">P_NNNNNCON (HR Master Data: Customer-Specific Authorization Object with Context)</a>

  • What is standard authorization object for  Personal development  P_PLOG

    Hi,
    Recently i got a object in HR and i dont have any experince in HR.Could you guide me how to asssign standard authorisation object for the personal development p_plog? how to see the infotypes and what is the header field in innfotypes?

    1-First of all the object is "PLOG"  for personal planning. There’s no object with  p_plog , most of time to maintain HR master we use object P_ORGIN.
    2- You want to assign authorization for certain infotypes?
    if yes, you have to go TR.PFCG  and assign the authorization to that specific role.
    Now you might have question , how you’ll will track down the roles against the authorization object .
    There’re several ways , you can go to Tr.SUIM and find reports by user , roles etc.
    You can also go SE16-> give table AGR_1251, give object and you can see the values in table.
    After finding the suitable roles you can go to PFCG and assign the values to the roles.
    As a good practice its better to create your OWN role Z:hrXXXX and assign it to users.
    Hope this’ll give you idea!!
    <b>P.S award the points.</b>
    Good luck
    Thanks
    Saquib Khan
    "Knowledge comes but wisdom lingers!!"

  • BW 3.5 which authorization objects available rssm (checks for infoprovider)

    Hi all,
    How does SAP generates the list of authorization objects in RSSM when you enter a specific infoprovider (checks for infoprovider)? Are only the authorization object related to this infoprovider listed?
    Is there any documentation about the purpose in RSSM for the button 'update check status (Authorization objects, infoprovider).
    thanks for your help.

    Based on which criteria?
    Is there somwhere detailed documentation available about the RSSM part in BW authorizations? It seems hard to find any...
    Thanks,

  • Authorization Object for data downloading from application server

    Hi friends ,
       My program downloads and uploads data from the application server .
    My requirement is  ,
    Authorization checks should be performed on the Server directories to ensure that the user has access to read and write to the directory. It should check the s_dataset authorisation object for this.. If a user does not have the s_dataset authorisation object no upload or download should be allowed.
    Can you please tell me how to deal with this ? how do we check the above condition ??
    Many thanks ,
    Hemant

    hi,
    This is not a single step process.
    First of all you have to create a field for authorization for server directories from su20 and then create authorization object from su21.then define a role from pfcg with this authorization object and assign this role to user profile from su01 with values defined.
    Then you have to call this authorization object in your program at selection screen.

Maybe you are looking for

  • ISA Application SAP CRM 5.0 - on mobile

    Hi All, We are supporting ISA application fr our client on SAP CRM 5.0, as of now. We would like to check if there is any possibility for our end users to open the application on their mobiles. If its possible, what all do we need to configure, if an

  • Annotation  processed at run time in java Library?

    Could any one give me a example in java library where annotation is processed at run time? I know there are lot of example in EJB and spring but looking for some in jave core library?

  • Can I connect two computers to one device?

    Can I connect two computers to one device? I am trying to have them control different aspects of the experiment that I'm running.

  • My hard drive is filling up but I haven't added any new data.

    My hard drive has filled up, taking up over a gig of available space, but I haven't added any new data. What's going on?

  • PGI not getting done.

    Dear Friends, I am going to deliver a back dated delivery (in the order also changed the document date in the header and in delivery Actual GI date), while doing PGI system is showing the below error: Deficit of BA Unrestr. prev. 8.638 TO : 951094101