Authorization group in material

Similar Messages

• Hide price in ALL Tx accg to material authorization group or material group

  Hello,
  I'm currently working on a customer's need which consists in hiding the material price in all transactions (MM, SD, FI...), according to the material master authorization group OR the material group.
  The difficulty remains on the fact that users manage the transactions for other materials for which they can see the price.
  I've tested some solutions posted on the forum (Tx OMET + user parameter EFB, use of authorization objects M_BEST_EKG + M_BEST_EKO + M_BEST_BSA) but none is satisfying enough.
  Please tell me you have an idea that would prevent me from doing transaction variants + enhancements!!
  Thanks for your help
  Annabelle

  > I am unable to find out the Material or the Material Type that is linked with a material authorization group (QMATAUTH).
  >
  > Do we have a table where I can find the Material Types or the Materials contained in each material Authorization Group (Q_MATERIAL -> QMATAUTH).
  You can get teh details on QM authorization group through table TQ01D. YOu can go through the following post for list of QM tables and tcodes.
  QM Tables and T codes
  Thanks.
  Anjan

• Creating Authorization groups for material types

  Hi All,
  I have a requirement to create Authorization groups for different material types we have in our company. Basically these are intended to restric the users from accessing the material master. Different material types needs to be assigned to differnt group of users.
  So if we can create couple of Authorization groups, then I am thinking of assigning the material types to these groups.
  I went to SPRO---Logistics general ---Material master -
  Tools --- Maintain authorization and authorization profiles.                 TCODE : PFCG
  Is this the right path?
  Please advise
  Shane

  Hi All,
  I don't think SPRO---Logistics general -Material master- Tools --- Maintain authorization and authorization profiles is the right path to create new authorization groups.
  Can anyone explain how to create new authorization groups for different material types. The purpose is to create a role and assign this auth. group to this role and provide that security role to specific users.
  Regards
  Shane

• Which table could i find 'Authorization Group'  used for Material master?

  Hi experts,
  Is there any table available could i find all 'Authorization Group' list as used by material master data.
  OR in SPRO, anywhere could i find 'Define authorization group' for material master data specific??
  Thanks.

  Hi
  Authorization group in the material master are maintained at the material type level.
  SPRO->IMG-> Logistics - General-> Material Master-> Basic Settings-> Material Types-> Define Attributes of Material Types
  List of authorization roups can be found in table T134-Material Types
  this filed is a free defined 4 charcter field.
  Thanks & Regards
  Kishore

• "Inherit" DIR authorizations from linked material

  Hello All,
  we would like to control DIR authorizations dependent on material master authorizations.
  Example: User has "read"-authorization for material master (via authorization group of material master) means he has automatically "read"-authorizations for all linked documents.
  Background: we want to control access to product (material) information and product documentation (linked documents such as data sheet, drawing...) at one place, e.g. the material master authorization group.
  Any suggestions how to achieve this?
  Thanks for all answers!
  Best regards
  Wolfgang Henkel

  Only way to do this is through ABAP. Its not available as standard functionality. The only area of SAP that offers this is HR ArchiveLink which inherits the authorisations via infotype.

• Authorization Group Material Master

  Hello,
  i am trying to restrict a user from accessing a single material. I am using Authorization Object M_MATE_MAT for this. When I use transaction mm03 to go on the material master I see a field for the Authorization Group but when I go to the same view in mm02 (View: Basic Data 1) I don't see the field Authorization Group or the section Material Authorization Group. Where can I enter the Authorization Group for a Material Master.
  Thanks everyone - I'd really appreciate an answer,
  Johannes
  Edited by: Johannes Hintsch on May 15, 2009 12:17 PM

  HI..
  You will have to make the field to display in OMS9.
  Double click on MM02 - - >then for number 36 make the field as optional entry or required entry as desired.
  Right now it must be showing in Hide.
  After changing you will be able to see in MM02 and make the entry there.
  Hope it helps,
  Swapnil

• Material/Material Type in Material Authorization group for QM

  Hi All,
  I am unable to find out the Material or the Material Type that is linked with a material authorization group (QMATAUTH).
  Do we have a table where I can find the Material Types or the Materials contained in each material Authorization Group (Q_MATERIAL -> QMATAUTH).
  Thanks!

  > I am unable to find out the Material or the Material Type that is linked with a material authorization group (QMATAUTH).
  >
  > Do we have a table where I can find the Material Types or the Materials contained in each material Authorization Group (Q_MATERIAL -> QMATAUTH).
  You can get teh details on QM authorization group through table TQ01D. YOu can go through the following post for list of QM tables and tcodes.
  QM Tables and T codes
  Thanks.
  Anjan

• Material Type & Authorization group

  Hi -
  I got the following question from a friend.
  We need to remove the material type XXXX and YYYY from the authorization group ZZZZ
  We need to add the Material Type AAAA to the Authorization Group ZZZZ. "
  I have no clue where a material type can be associated with Auth Group.
  Please advise.
  Thanks alot.

  Hi,
  I will give the Authorzation object and Authorization group
  1. M_MATE_MAR (Auth. Object)
  2. BEGRU  ( Auth. Group).
  You can change material type and authorization group here.
  Siva

• Authorization object M_MATE_MAR "Material Master - Material Types" in MM01

  Hi,
  We in CPS Energy are implementing VIrsa SOD conflicts on the roles that are in place in current SAP 4.6C version. The authorization object M_MATE_MAR is used by MM01(Creation of Material Master) transaction code & used at mutiple roles. We have restricted this authorization object by Material Type Authorization Group (BEGRU)as WMS1 & given activity a 01, 02 & 03 in a role. The same authorization object is used in Common roles also for displaying that is using transaction code MM03 (Display Material) but the activity & authorization group are ''. This '' is taking precedence over the the authorization object given in the other role.
  Please let us know how to put a control on this authorization object which is used widely by large number of users.
  Maintained Material Master: Material Types                              T-D119010802
  Activity                       01, 02, 03                                             ACTVT
  Authorization group          WMS1                                              BEGRU
  Any help is really appreciated
  Thanks
  Sree

  Hi Sree, your role with MM03 in it should not have * for actvt if it is only a display role.
  As it is a display role actvt 03 would be more suitable.  That way you could have display for all auth groups, but create and change/MM01&2 would be restricted to WMS1 (and any other materials with a blank auth group)

• Authorization Object for Material Type

  Hi All,
  Is it possible to restrict the user from creating the material master based on Material Type. If yes then what is the authorization object for the same.
  Regards
  Mahendra

  Dear Mahendra,
  You can definitely restrict a end-user to only particular Material Type thru Authorizations.
  Authorization Object: M_MATE_MAR
  This can be done thru authorization management. Consult your Basis person or follow this:
  SU01 - Enter the user Id & select display button. Now click on the Roles Tab & note down the role assigned to this user Id.
  Go to T-Code - PFCG - enter the Role name & select the change icon.
  Click on the Authorizations tab page. & then Click on Change Authorization Data.
  Now expand the menu tree of Materials Management: Master Data & further expand the menu tree of Material Master: Material Types. Now click on the change icon next to Authorization Group & select the required Material Type that you want to authorize the end-user.
  This is how you can give authorizations only for a particular Material Type. 
  Hope this helps.. .
  Give point if useful...
  Thanks,
  Jignesh Mehta
  Mumbai

• Authorization groups in MM01

  I'm trying to restrict material creation by material type, but with no positive results.
  First I created an authorization group via SE54 and then asigned it to the material type via T134. Then I add the authorization group in object M_MATE_MAR to the role but this didn't work.
  I appreciate your help!
  Thanks in advance.
  Rosina Fernandez

  Hi Rosina,
  Just to clarify, do you want for the role in question to only allowed creation of material of type "WERB" in group "ZMM1" and no other material types?
  if so, the other materials types also need to be added to a authorisation group. If no authorisation group is assigned to a material type, that material type will not be checked for M_MATE_MAR access.
  i.e. assign materials types that shouldn't be created by this role in group ZMM0 and provide access to this group in roles that should be allowed.
  Hope this make sense.
  John.

• Authorisation group and Material group

  Hi Guys,
                When a user create a PO, The material group assigned to Authorization group, is allowing the user user to create PO, whose role is not assigned to the authorization group.
  I am looking for solution, to restrict user from creating PO, whose role is not assigned to authorization group.
  Is there any user exit available to solve this issue.
  Thanks

  HI,
  In PR and PO transaction, there is no authorization object that check
  the material group.
  Only the following objects are checked in ME21N :
  M_BEST_BSA
  M_BEST_EKG
  M_BEST_EKO
  M_BEST_WRK
  To fulfill your requirement, you could consider the following
  suggestions :
  - in txn ME21n and Me51n , enter the value of the material group under
    personal setting. (in txn ME21n, click on personal setting, select
    default value   > PO item, fill in the corresponding material group
    click on always propose)
  - in the customization of purchasing (spro  > material management   >
    purchasing   > Purchase order   > Define screen layout at document
    level , select field selection akth and akte and aktv, double click
    on basic data, item. for field material group, select display only
    instead of optional!
  With the above setting, the material group will always defaulted for
  users and the screen will be grey off, do not allow user to change it.
  The only setback of this suggestion is you will have to setup personal
  setting for every new user.
  If you want only restricted GroupS to be displayed as defined in a role,
  there is no workaround in the standard design. To achieve this, you
  have to modify the standard coding and add an extra authority check for
  your authorization object (eg; Z_BEST_WGR). The standard program, in
  which the authorization check for the PO position takes place is
  "MM06EF0B_Berechtigungen_Kopf".
  The attached OSS note 20534 will explain in detail, how the
  authorization check works and also provides an example of the necessary
  coding to implement the authorization check for your own authorization
  object:
  EXAMPLE :
    authority-check object 'F_KNA1_BUK'
         id 'BUKRS' field '01'
         id 'ACTVT' field '03'.
    if sy-subrc <> 0.
      message e...   "Nicht berechtigt um ...
    endif.
  BUT please take into account, that ANY changes to the standard coding is
  a modification.
  There´s no user exit available.
  I hope this helps!
  Best Regards,
  Arminda Jack

• Control the authorization base on material type level

  Dear Experts,
  We want to control some users only can create or modify the material base on material type level .
  For instance , user A only can modify the 'ROH' type material , he can not maintain any 'FERT' type material .
  I set the authorization object 'M_MATE_MAR' in the user A's profile , but it doesn't work .....
  System : SAP4.7 x 200
  DB : oracle9i
  Has someone can tell me it is possibile to control the maintain authorization base on material type level ?
  Or give me some suggestions.....
  Many thanks
  Best Regards,
  Carlos Zhang

  Hi
  Yes this works & the authorisation object found by you is also correct.
  For the object - M_MATE_MAR
  Maintain the activity 01,02,03
  Maintain the authorisation group  - each material type can be assigned to an authorisation group. In OMS2 , you can assign the authorisation groups to the material type.
  For E.g if the material type is ROH- enter the authorisation group as ROH.
  Ensure that the user does not have this object, As If this object is present in any other role with authorisation group as * then the * will overirde any value.
  Thanks & Regards
  Kishore
  Edited by: Kishore Kumar Chiluka on Jun 13, 2008 11:18 AM

• Assign posting periods to authorization group in tcode S_ARL_87003642

  Hello,
  I want to restrict posting periods for some users. Therefore, I have created 2 functions associated to 2 authorization groups.
  In transaction S_ARL_87003642, when I try to assign different posting periods to each authorization group to the same company code (Posting Period Variant) it appears a message saying u2018Target key must be different from source keyu2019.
  What am I doing wrong? Do you know how can I restrict posting periods for some users?
  Thanks and regards
  Ana Rita

  Dear,
  You simply have to define authorisation groups in OB52 and assign this group to F_bkpf_bup in SU01 against user proflie as desired. Take basis help.
  Regards

• Authorization Group for G/L Account

  Hi,
  What?
  - I wish to restrict the 'posting' of a G/L account to be done by certain users only
  How?
  - What I have done was...
  a) From FS00, I have added a free-text (BANK) into the Authorization Group for a G/L account
  b) From PFCG, a new role was created to allow these 2 Authorization Objects, F_BKPF_BES and F_SKA1_BES
  c) 'BANK' was entered for the Authorization Group for both these 2 Authorization Objects
  d) From there, I have assigned this new role to the user that I wish to allow Posting of the G/L account
  Problem?
  - Other users still can do Posting for this G/L account
  - Any steps which I have missed out here or done wrongly?
  Thanks,
  Brandon

  Hi,
  Some other roles of the users may override and cause the users to post against this GL account.
  Check all the roles relevant for the restricted users. 
  Use SUIM t-code to find if the auth object mentioned above is included in any other role.
  If it be, restrict that again.
  Generally if one role as no restriction against this auth and not all, this issue tends to happen.
  Regards,
  Sridevi