Authorization Issue for Object CRM_ORD_PR
Dear All,
When user search sales orders in PCUI by sales org, Distributional Channel and Division criteria it shows the result list. But it is also throwing the error as "You are not authorized to Display this transaction"
I am not sure why system is showing this message.
I have checked the auth objects for this user.Authorization Objects CRM_ORD_PR and Object CRM_ORD_OE are inactive for the Role.
When I searched the sales order in SAP GUI and when I click on the sales order from Locator it is giving the message as "You are not authorized to Display this transaction". When I checked the SU53 dump it is giving the message "Authorization check failed
Authorization Obj CRM_ORD_PR Authorization Object CRM Order -Business transaction Type.
So my question is though we have made the CRM_ORD_PR object inactive why system is showing the message in SU53.
Also when I checked the trace system is also checking this object.
Please help.
Pankaj
Rika,
Thanks for taking the time to reply, it's really appreciated.
I will pass the details of this note over to our Basis team to see if this helps us resolve our issue also (we are trying to prevent unauthorised objects showing in user search result lists).
We are on CRM 2007 though, so I am not sure whether it will still be relevant.
Many thanks again,
Andrew G.
Similar Messages
-
Business Partner Creation Issue-For object BU_PARTNER
Hi CRM Experts,
Need a help immediately.
Currently am working on CRM 5.2.
In SAP UI when I am creating a BP Type Organisation or Person system allows me to create But when i do the same in WEB UI i am having problem.
In Web UI when i am selecting New Account and creating New Corporate Account or Individual Account with Grouping and Role i am getting an error message as " For object BU_PARTNER , number range interval AB does not exist"
Message no. NR 751
Diagnosis
For object BUPARTNER , number range interval AB does not exist
Message no. NR 751
Diagnosis
The database table NRIV has the delivery class 'C', i.e. the SAP default
settings are only in client 000.
Procedure
Create the missing number range interval in customizing.
settings are only in client 000.
Procedure
Create the missing number range interval in customizing.
I have already assigned number range interval because of which i could create and save BP in SAP UI where as am facing this problem in creating BP only in Web UI.
Do i need to do anything in SNRO? Please explain clearly what should be done to resolve this issue?
Let me remind you again that i could create and save BP in SAP UI without any issue.
Do i need to make setting for the message"settings are only in client 000"
Regds...ArupHi Pankaj,
Please check wether you configured all required node under Master Data Synchronization..In SPRO..I am referring to below node.
Active Synchroniztion Options
Set BP role Category for customer Integration
Define BP Role for direction customer to BP
Field Assignment for customer Integration
Thanks
Veman. -
Authorization Issue for BI Reports
Hi All,
I am running the report with one User, and while running i am getting the error message as "NO AUTHORIZATION"
I have checked in Su53 and got some logs over there. Pls find below.
Authorization check failed
Object Class RS Business Information Warehouse
Authorization Obj. S_RS_COMP Business Explorer - Components
Authorization Field ACTVT Activity 16
Authorization Field RSINFOAREA InfoArea 0CRM_SERV_SO_QUOTE
Authorization Field RSINFOCUBE InfoCube ZLEVAL
Authorization Field RSZCOMPID Name (ID) of a reporting component ZLEVAL
Authorization Field RSZCOMPTP Type of a reporting component REP
User's Authorization Data PROGRAM
Object Class RS Business Information Warehouse
Authorization Object S_RS_COMP Business Explorer - Components
Authorizat. T-B372019300 Business Explorer - Components
Profl. T-B3720193 Profile for role Z_PROGRAM_LOGIN
Role Z_PROGRAM_LOGIN Role for Login Program
Authorization Field ACTVT Activity *
Authorization Field RSINFOAREA InfoArea *
Authorization Field RSINFOCUBE InfoCube *
Authorization Field RSZCOMPID Name (ID) of a reporting component ASPDEFECTSTOCKDESPATCH, ASP_DEFECT_STOCK_REPORT
Authorization Field RSZCOMPTP Type of a reporting component
Thanks,
Jelina.Hi jelina,
the user has only
Authorization Field ACTVT Activity 16 >> include 03, 06 also
Authorization Field RSINFOAREA InfoArea 0CRM_SERV_SO_QUOTE >> try to include the info area the report in or *( all)
Authorization Field RSINFOCUBE InfoCube ZLEVAL >> try to include the info cube the report in or * (all)
Authorization Field RSZCOMPID Name (ID) of a reporting component ZLEVAL >> the technical name of the report should include
Authorization Field RSZCOMPTP Type of a reporting component REP >> include Query View too
kris -
Authorization issue for TR VD01 & VD02
Hi all,
In customer master creation for TR VD01 and VD02 basically we have 3 VIEWS( General data, company code and sales area data). My main requirement is we have 3 sets of users. for one set of users we should give authorization only for creating and changing general view., and other set of users to create only company code data and changing this view. Ie based on views i need to give authorization to the end users. Is it possiable to do this through abap( through user exit) or else this requirement can be done by basis.
Regards,
Smitha.Hi Suvendu,
Many thanks for your replay,
here for this scenario i am not able to identify which view currently the user is changing(techinically)
Ie in userexit i am not able to identify which view he is currently changing.
How can i distinguish bwtween this 3 views.
Regards,
Smitha -
HR Authorization issue for specfic User
Dear all,
One of the HR user , he can run payroll on particular site ,
i have assigned Org key of site to master data on the particular role .
User tried to run payroll using pa30 with personnel no (one of store user) .
but system is not take any value and its not showing any error also .
For example pls check below detail i have tried my user id and system has shows below details of the user (below details is one of the store user ).
Personnel no. 2941
Name A Mohammed Younus
Personnel ar ZOSO EE group A
Subarea STCH EE subgrp 3E
Kindly suggest to resolve the issue
Note : 1, i have deleted the user and i have recreated role .
2, i have copied another user role (he can run payroll) to effected user ,even though he cant able to run payroll.
Edited by: satheesh0812 on Dec 17, 2010 9:29 AMDear all,
I dont thing so there is no issue with Role ,only issue with Structure Auth..
Becoz pls check below Authorization Object.
Changed HR: Master Data
Authorization level E, M, R, W
Infotype *
Personnel Area *
Employee Group *
Employee Subgroup *
Subtype *
Organizational Key 20000156, 20000157, 20000201
In OOSP for particular Org key .
Auth profile Auth.Profile name
CTHR_CHENNAI CTHR_Chen
Auth profile No Plan Vers Obj Type Object I Maint Eval.path Status vec
CTHR_CHENNAI 1 01 O 20000156 O-S-P 12
CTHR_CHENNAI 2 01 O 20000157 O-S-P 12
CTHR_CHENNAI 3 01 O 20000201 O-S-P 12
In OOSB details
IN OOSB I have assigned Authorization profile to UserXXX, user can see all employee details in PA30 except one employee details , can
User name Autho.profile Start date End date Exclustion Display Objects
XXXX CTHR_CHENNAI 01.01.2005 31.12.9999
If i give Autho.profile --> all instead of CTHR_CHENNAI ..
HR executive can able see all employee details in PA30 ...
Let me know where exactly issue is there ...
Kindly suggest... -
Authorization issue for Jump query from Summary to Detail
Hello Gurus,
I am facing an interesting issue in Jump query authorization.
I have a query on a summary cube which has Company code as a authorization relevant object .From this query I launch a query on detail cube.This details cube has company code and customer as authorization relevant objects.Customer is present in free characteristic for this query.Summary cube doesnt have the customer object at all.
When the user drillsdown on the Customer level in the details query he get the authorization error.After this if he just refreshes the query it works fine .
Can anybody please suggest any innovative workaround for this issue.
GautamHello Gurus,
I am facing an interesting issue in Jump query authorization.
I have a query on a summary cube which has Company code as a authorization relevant object .From this query I launch a query on detail cube.This details cube has company code and customer as authorization relevant objects.Customer is present in free characteristic for this query.Summary cube doesnt have the customer object at all.
When the user drillsdown on the Customer level in the details query he get the authorization error.After this if he just refreshes the query it works fine .
Can anybody please suggest any innovative workaround for this issue.
Gautam -
There is a DSO in our system.
It contains characteristics 0ORGUNIT and 0USERNAME which are each flagged as Authorisation Relevant
The report than runs off this ODS doesnu2019t actually use them. However, the authorisation process still makes checks when checking at Infoprovider level (Paul has run a trace to show this)
What I plan to do is to unflag the characteristics and transport them up.
i) I can do that without it having any impact on the ODS itself , yes?
ii) Can you think of a reason why I shouldnu2019t do this? We donu2019t need these 2 characteristics to be auth objects.
Thanks,
NitikaWhat I plan to do is to unflag the characteristics and transport them up. => this plan will solve all your issues but mind it they are SAP standard chars
i) I can do that without it having any impact on the ODS itself , yes? => yes , there will be no impact on ODS due to these changes
ii) Can you think of a reason why I shouldnu2019t do this? We donu2019t need these 2 characteristics to be auth objects. => if authorization check is there then it means it could be used for authorization purpose while query execution but in yr case if authorization is not needed then just deflag those checks and go ahead if it is creating a trouble -
Hi All Authorization Issue for CS02
Hi,
I have a transaction cs02. I am making changes using by calling this transaction( ie i have used it in program as call transaction cs02.) but for this transaction few user's don't have Authorization .So when these user's run the report they are not able to do the changes using this transaction. Is there any way where we can do these changes eventhough these user's don't have Authority to 'cs02'.Hi Jaffer,
You need to use su53 after the error happen and assign the right roles or access to the objects needed so users can make changes in the required transaction.
Regards
Juan
PS: Please award points if helpful! -
Authorization Issue for Inventory in warehouse report
`Hi All
I face a issue in giving authorization for a single report to a user in the Inventory reports. The report is Inventory in warehouse report.
Can u please tell what are the preliminary authorizations to be set for the user to execute the report. The thing is he should not be able to see the item cost and Last purchase prices.
Thanks... MarikannanHi,
I am not sure if the authorization for such report is available. I just suggest you to check if form settings icon is able to access or not. if you can open the form settings, I think you can set authorization to be no authorization to access the form setting for certain users.
Rgds, -
Authorization Restriction for Object Changeability :
Hi ,
How to restrict users from using Object changeability in Production System if they are given access to RSA1, even though the system is completely closed , with Object changeability, the users can still create a new Info package and upload data ?
I have gone through the SDN and SAP documentation, but I could not find any such references.
Looking forward to your valuable input on this.
Regards,
Ahmed.Hi there,
You have an authorization object named S_RS_ADMWB (Data Warehousing Workbench - Objects).
You can with that object restrict the several activities (display, execute, create, etc.) for different Datawarehouse InfoObjects (InfoPackage, etc.).
Try to restrict that to the users.
Diogo. -
Transaction Launcher - TCode Authorization Issue for ERP transaction
We are trying to implement an ERP transaction in the CRM WebUI via the transaction Launcher. Everything has been set up properly and the transaction appears in the nav bar. I am running it to launch a new window. When i click on it, a new window pops up, with transaction IC_LTXE and an error saying
*"You do not have authorization to view transaction ZSD_IC".*
Everything seems to be set up properly and we can access the transaction with the same user id in ERP. He has SAP_ALL.
Does this have anything to do with IC_LTXE? Is there anything special i need to do to assign proper authorization to this user.
Thanks,
jeremyHello Jeremy,
We are trying to execute R/3 transaction from Transaction Launcher but we are facing problems.
In order to execute transactions from TL we have copied object TSTC to ZTSTC in both systems and use the method Execute to be used from Transaction Launcher customizing. Then we have customized T. Launcher in order to get two links, one to R3 transaction (using the object ZTSTC, method execute and XD03 as value parameter) and one to CRM transaction (using the object ZTSTC, method execute and CRMD_MKTDS as value parameter).
When we execute the TL link to CRM, transaction works properly through ITS, but executing the link to R3 transaction we receive the following popup message:u2018Logged Off Successfully. You have been logged off from SAP NetWeaver Application Server.u2019 the screen gets in blank and no further actions are executed.
In order to correct the fail we have implemented these notes, but the problem still remains.
0001224663 Launch of Front Office with Transaction Launcher fails
0001263716 Launching Front Office Process using Transaction Launcher
Based on your experience could you help us to get the right configuration to reach R/3 transaction through Transaction Launcher.
Thank you very much in advance.
Best regards. -
VL09 Authorization issue for Inbound Delivery
Dear Experts,,
When we reverse the goods movement in VL09, authorization check is made for Goods receiving/Shipping Point.
This is fine for outbound delivery because we always have a shipping point defined.
However, most of the Inbound Deliveries have no Goods Receiving/Shipping Point.
So, if we give the authorization for u201CBlanku201D receiving point = " ", the user can reverse goods movement for any inbound delivery.
How can we restrict this?
Please suggest your valuable inputs
Regards,
ShahsidharHi,
most of the Inbound Deliveries have no Goods Receiving/Shipping Point.
If you doing inbound delivery by VL10B, then you should specify shipping point.
Define shipping point for inbound delivery and maintain authorization
kapil -
Authorization Issue for Transaction Codes PA10,PA20,PA30 &PA40
Hi Experts,
I have created Custom role for accessing ALL HR Transaction codes in IDES System and added to the user & Tested.
All transactions codes are working except PA10,PA20,PA30 &PA40
Please help me regading this.
Advance Thanks,
BBCHi,
I had check with basis Team, they told that I have all authorizations.
This is New Installation for R/3 HR IDES System. even basis Team also created role for above transaction code but not getting access.
We can accesss all transaction codes except these.
All are new for HR. here anything needs to be configure for access PA10 to PA40 Transaction codes.
Please advice me.
Thanks & Regards,
BBC -
Regarding authorization issue for vf04
Hi Experts,
I have copied the vf04 transaction into ysdvf04 transaction.
And my requirement is One user is responsible for one plant.
In YSDVF04 we have the field shipment point field on the selection screen.
When that user executes this transaction ,only that particular plant related records has to come .
How to do that
Please replyHi Ramakrishnan,
Solution1:
You can delete the shipping points and plants for the user based on the table TVSWZ at the event AT SELECTION-SCREEN.
Solution2:
You can obtain the link on shipping point and plant from the table TVSWZ. If you determine for which plant the user is responsible then in your program at the final output table you can delete those records which is not pertaining to the user.
hope this would help you!.
Regards,
Devendran Krishnan. -
Authorization Issue in Visibility of Lead and Opportunity Documents
HI,
I have 4 sales Org in my Project.
When an user from Sales Org 1 is searching a lead he was able to see all the leads
when I tried to change Lead or opportunity of other sales org with my user id, system says that "You have no authorization to execute action Change " the reason is "The authorization check for object CRM_ORD_OE has sent back the return code 12. The activity executed was Change. Return code 12:
I understand it as the system can't find necessary authorization . In my project they want to restrict the document visibility to other users. How can i restrict by which i can see only my documents.
With Regards,
Selvam TTo see only your transactions use auth. object CRM_ORD_OP.
Maybe you are looking for
-
Is is possible to run a report looking for all the computers with a specific file on them?
-
Cannot see standalone option during installation
I have two problems: 1. I'm trying to install Workshop 3.2 as a standalone application but i don't see that option. It's always asking me for my Eclipse directory (step 4 during installation). 2. So, I installed Eclipse 3.2 with WTP and installed Wor
-
SCVMM 2012R2 CU5 Import-SCStorageProvider fails (Error ID: 20413)
Hello, iSCSI array is EqualLogic PS4000. HIT version 4.7.1, PowerShell/SMP access has been set up and works. New-EqlGroupAccess command worked as well Connect-EqlGroup Import-SCStorageProvider fails with critical exception. This is the report that I
-
i just bought adobe after effects yesterday and no longer need it. how do i cancel my subscription?
-
Parts Requirement Create Order Error:Validation Failed for the field - Shipping Method DHL
Trying to create Parts Requirement. Error message on clicking "Create Order" button: "Validation Failed for the field - Shipping Method DHL" Please suggest the Setup that needs to be done for this.