Authorization variable defaults to "Exclude"
Dear Experts,
We are encountering a user request to have the authorization variable with multiple single values default to "Exclude" instead of "Include" when showing in Portal.
We have set the plant with Authorization variable representing Multiple Single Values, when we integrated the query to EP, the variable is default to "Include" the authorized plant.
e.g. UserA is authorized to view the data of PlantAA, PlantBB, PlantCC
While logon to portal,
the Vairable is displayed as:
Plant: PlantAA - Include
PlantBB - Include
PlantCC - Include
How is possible to change the default include to "Exclude'
like,
Plant: PlantAA - Exclude
PlantBB - Exclude
PlantCC - Exclude
Thanks for all the inputs!
Thanks for the reply,
you kinda misunderstand my question.
I want to achieve a default "Exclucde" instead of "Include" when calling Authorization variable plant.
For instance, a particular user is authorized to view 20 plants, he wants the report to display all authorized plant, yet instead of default to including all 20 plants, he wants the report default to Excluding all 20 plants, therefore, he could simply include the plants he is interested in.
Yet, sadly, I couldn't find a place to change the authorization variable defaults to EXCLUDE.
Similar Messages
-
Authorization Variable message
Guru assistance requested.
I am testing two separate "test user ID's" for authorization relevant objects.
Objects are Division / Sales Organization / Plant.
Test user 1 is functioning correctly.
Test user 2 is triggering a message when I logon to BEx and choose my query.
Message dialog box reads:
"!" Value if variable ZPLNT_XXXX is automatically converted.
I can not eleminate this message from occuring.
Test User 1 has authorization restrictions on "Divisions and Plants"
Test User 2 has authorization reswtrictions on "Sales Organizations and Plants"
I am not receiving any message with Test User 1 and connot explain the reason behind the above
information message.
Any ideas.
Authorization variables are identical for all three objects and both Test Users have authority to the
roles with each infoprovider.
Thanks....DanSachin,
I went into Query Designer again and looked at my variables:
All authority variables are identical in character definition:
General Tab: Type of Value = Characteristic Value
General Tab: Processing by Authorization
Detail Tab: Multiple Single Values
Detail Tabl: Variable is Optional ..... ready for input field is "blank"
This is my query filter:
Selection:
Filter on Variables 0DIVISION / 0CURTYPE / 0PLANT / 0SALESORG / 0FISCPER.
0CURTYPE is defined for B0 on the COPA InfoProvider.
All others are Selections are user elected variable options.
The Authorization variable is a restriction I placed on the "Default Value" of characteristic objects
0DIVISION / 0PLANT / 0SALESORG
(So as not to display the object).
As the user .... I logon to BW.
Navigate BEx Analyzer >> Open Query: Choose Query Name then "open"
At this point the dialog box appears -- below I select my filter options.
Dialog box reads:
There are messages:
Type" !" ..... Description: Value if variable ZPLNT_XXXX (my variable name) is automatically converted.
If the query is the issue .... I would think that this message would appear for both test users.
Not just User#2.
Also of note ... I have never seen this message below, but then, I am now just beginning to test
user "authority variables" over authorization relevant objects.
Ant other thoughts.
Thank you ..... Dan -
Hi Bw experts,
I have implemented the authorization profiles on a hierarchy defined on 0orgunit.
They work fine, and i have inserted in the report an authorization variable that reads automatically the authorization profile of the users defined in the role assigned (pfcg, rssm..etc).
Also this variable works..the problem is that if in the report i insert a node selection variable in order to give to user the possibility to select the hier node, it doesn't work. If i don't use the authorization variable it works. Is there a way to utilize both theese variables?
Thank u,
Alex BHi
I there is a way but it may not be very elegant.
The selected (drill down) hier can be enabled only if it does violate the security, thus if you exclude the non secure nodes on the WorkBook you can then show the rest of the hier.
Edan -
Hierarchy authorization variable not filled
Hi experts,
I'm trying to give users access to their node in the 0COSTCENTER hierarchy using a variable $VARHCECO in a authotitazion object. This object has 0COSTCENTER equal to ' ' and 0TCTAUTHH equal to $VARHCECO. In the report variable customer exit this variable is filled in the I_STEP = 0 with the information that is stored in a ODS. Each user only can view his/her subtree cost centers.
Finally, in the query, a authorization variable is used in order to choose the nodes that the user has authorization.
The problem is that in runtime, neither the variable VARHCECO nor the I_STEP = 0 is reached because the customer exit is only called for i_VNAME blank and I_STEP = 3. As a consequence, I get an authorization error because of the variable is never filled.
How can I manage for the customer exit is called for variable VARHCECO and I_STEP = 0?
Many thanks in advance,
David MorenoHi David,
We have handled a similar scenario (not for cost center but for Organization Unit hierarchy) in a different way. Instead of using authorization object, we have defined a variable through customer exit.
The flow goes like this. You define a variable for which the values get filled up through customer exit. User do not have the flexibiity pass any values to this variable. It by default goes to the master, Picks up the Organization unit, he is assigned to, calls the function module which identifies the nodes under that Org unit hierarchy.. Passes the list of Org_units to e_t_range.
By this he can by default see all objects/employees under his org unit and the Hierarchy below that only.
Trust this helps.
Thanks n Regards
Meyyappan -
Authorization variables not filled up in Bex Portfolio
Hi there,
not sure if any of you guys came across this, but i have saved a web report on "bex portfolio"section. When i run this report, the authorization variables are not getting filled up.
but it works when i run the report using "new analysis" in Bex web analyzer tool.
does anyone has an idea?
I want to publish the reports in Bex portfolio because it is mush simpler for end users that don't have use Bex web analyzer and then open roles and then choose a report.
is there any easier way to do this?
thanks in advance.Hi -
I assume that you might have kept the filters(Variables) in Default Values section. Only filters which are placed in Characterstic restrictions will appear in Universe Designer. Thanks!
Regards,
Anesh B -
SAP BO WebI Report on top of BI Bex Query with Authorization Variable
Hi,
We are trying to restrict row level data using BI 7.0 analysis authorization concept. We have an authorization variable in the Bex query and is working perfect in Bex Analyzer as well as in RSRT.
Now we are trying to achieve the same thing in BO webI. We created an Universe using Authentication Mode SSO. We are on BOXI 3.1 and implemented SSO. When we try to run the query in WebI we get the error
"A database error occured. The database error text is: Error in MDDataSetBW.GetCellData..(WS 10901)"
Just for testing purpose, when we use query filter in WebI and use Values from List, it is showing only the authorized value it supposed to show and runs well with that value selected. But we have to achieve this without the query filter in WebI.
So are we missing some thing here or any patch issue? Please share if you have done this type of reports in BO.
Thanks in advance for your help.
Moorthy.Yes I did run MDXTEST and it gives error as 'you do not have sufficient authorization'. The reason it is giving, I guess and we are debugging that to confirm, is first it looks for 0BI_ALL and throws error which is not the case in Bex. See the following trace in RSRT trace.
InfoObject Properties Defined
Reading of Directly Assigned Authorizations
Direct Assignment Does Not Include Universal Authorization 0BI_ALL
Reading the Indirect Assignments with Authorization Object S_RS_AUTH
Does user have OBI_ALL?
No, the User Does Not Have Universal Authorizion 0BI_ALL
Negative Entry in SU53 Result of Failed Check for 0BI_ALL
Indirect assignments found; no universal authorization
Reduction of Authorization Dimensions on Characteristics in InfoProvider
Reduction Successful
Thanks!
Moorthy -
BW Query variable default value put in Crystal report variable question
Why BW Query variable default value put in Crystal report variable for BO InfoView to open crystal report.
I using Analyzer to open bw query,variables had default value ,but crystal report can't had variable default value ,and can't search variable value.
pho:
[http://file.itpub.net/f/e38876ad4f6efb7e73980488e7d71f8d/4ae940e9/day_091029/20091029_2b04da1232144feba180OrB23SNvXtoT.gif/p/1.gif]
[http://file.itpub.net/f/d93ddfe61e0eaf80429726c61f1a02ff/4ae940e9/day_091029/20091029_3211ffe04bf0302fbab5FRKnbwmH80p7.gif/p/BW_QUERY_Crystal.gif]
Edited by: flying on Oct 29, 2009 8:20 AMI Know what to do .
but Crystal report date variable value are Garbage characters "###".
PHO:
[http://file.itpub.net/f/39a8510104476707ae21c945db93ecba/4ae97949/day_091029/20091029_32dcbb7e7d99141483aesJ9KBJHXN0Kj.gif/p/2.gif] -
Authorization Variable doesn't work in Workbook
Hi all,
I have defined authorization variable for a characteristics in Query. When I run the query, the variable's value can be derived from user's authorization. But when running in workbook, it doesn't work. The value is empty and workbook shows "No Authorization". Does anyone have the same problem?Dear Eric,
Are you sure that you have enabled the authorization object for your InfoProvider? This is something that has to be done in transaction RSSM after an authorization object as been created.
Greetings,
Stefan -
Webi Bypassing BEx Authorization Variable with SAP Exit
BEx query has Hierarchy Node Variable with Authorization as processing type. Its set as User Input ready
When the Webi report is refreshed, the LoVs appear as per the Authorization. However, if user doesn't select any value (pushes from right to left in variable screen) he gets NOT_AUTHORIZED error. Which is not intended, it should check the authorization in the background via SAP exit and populate the result. This is how it runs inBEx query.
However, in Webi it's giving NOT_AUTHORIZED error? This is how the product is designed to work or is it a bug.
I see several forum threads and SAP KBAs/notes but they are not answering my question. Could anyone please help.
I am ready to provide more details on this error.
Thanks,
TilakHi,
this is how authorization variable would work in any of the clients and not just Web Intelligence.
You created an authorization variable which is configured as "read for input", so the user is getting prompted.
So In Web Intelligence the LoV shows up.
if the user does not select a value, then you are not sending a value, so you basically asking for all data and you are not allowed to see all data and therefore you are getting the message "no authorization".
if you are making authorization variables as ready for input then the user needs to select the proper values - regardless of the BI tool.
if you want the authorization to be check in the background then the authorization variable should be configured to not have ready for input.
regards
Ingo Hilgefort -
Authorization Variable values in BEX.
Hi all,
I have a report with an authorization object (for example 0COUNTRY) restricted to an authorization variable.
The object restricts the report according to the user's role. I want a user, with multiple country authorization, to be able to run the report on a few countries that he is authorized to see. For example he is authorized to see US DE FR & CH, and wants to run the report on DE & FR.
So, I created the authorization variable "Ready for Input", but now when the user runs the report he <b>can insert</b> other values but when he click on the options he can choose from (F4),<b>he can't see the texts</b> (DE - Germany, FR - France) and he gets the message:
<b>"BRAIN655 - No values available or not authorized to display"</b>
Full points for the answer promised.
Many thanks, Yaniv.I've done these steps when I createted this object long ago. I have no problem with the authorization itself. it works great.
You are right, the selection option window shows the values US DE FR & CH, but I want the user to see the description also (when pressing F4) so he will be able to tell which countries to choose . that is when the message pops up.
<b>It is like the user does not have the authorization to view the 0COUNTRY values and their texts</b>. -
Problem with Selection screen values of an authorization variable
hi Gurus,
I have an authorization variable for Division in my queries....Now whenever a user tries to run the query...a list of divisions is available to him....All divisions for which he/she has proper roles assigned.
Now the problem is that these values are not restricted to the ones relevant to that query (namely the multi provider)
Eg. for a Flowers Query (divisions relevant to Flowers only) all the divisions (including the ones for Vegetables, Crops etc.) are also visible only because these roles are also assigned to the same user. This needs to be avoided.
In a nutshell....
Is their any way by which i can restrict the number of values popping up for an authorization variable in the selection screen, to only those values which are relevant to the info-provider on which the queries are based ???hi Deepu,
I did go through that SAP note. I just have one concern regarding that. The check at the Info provider level is clear enough and i already have that in place. Now there are 2 more checks required a) at the info object level and b) at the BEX designer level.
Are all three checks required???
and also how do you place the check at the BEX level??? i could not quite figure that one out...
Any inputs would be welcome.
Thanks,
Nikhil -
Variable default period should be currenct fiscal period
Expert's,
Here is a requirement from ousite folks.where in the variable default should be current fiscal period.
I have to write a code in CMOD.Please any one give the code so, that I can pasted and modify based on my requirment.
Points will definitely assigned .
Thanks in advance.
vasu.Hi Vasu,
<u><b>Sample Code.</b></u>
When <Variable Name>
Data : l_p_range_test TYPE rrrangesid.
data: l_peri like T009B-POPER,
l_year like T009B-BDATJ.
IF I_STEP = 1.(This is for default value) before query execution.
--> use following function module to derive period from system date(sy-datum)
CALL FUNCTION 'DATE_TO_PERIOD_CONVERT'
EXPORTING
I_DATE = sy-datum
I_PERIV = <Fiscal variant>
IMPORTING
E_BUPER = l_peri
E_GJAHR = l_year
EXCEPTIONS
INPUT_FALSE = 1
T009_NOTFOUND = 2
T009B_NOTFOUND = 3
OTHERS = 4
Concatenate l_peri l_year into l_p_range_SSS-low.
l_p_range_test-sign = 'I'.
l_p_range_test-opt = 'EQ'.
APPEND l_p_range_test TO e_t_range.
endif.
Just written code, check datatypes and systax check.
Hope it Helps
Srini -
How to set variable default value by program?
Dear all,
We would like to set a BW variable default value by program (not using query designer).
Do you have any ABAP sample code for this? I'm really new in ABAP programming.
we are using BI 7.0
Thank you for your help!
Olivier DESFOURHi Olivier,
FOllowing is the code which defaults calmonth to first month of the year to current month - 1.
Data : input1(4) TYPE n,
input3(2) TYPE n.
WHEN 'YQV_FD'.
if i_step = 1.
input1 = sy-datum+0(4).
concatenate input1 '01' into l_s_range-low.
input3 = sy-datum+4(2) - 1.
concatenate input1 input3 into l_s_range-high.
l_s_range-sign = 'I'.
l_s_range-opt = 'BT'.
APPEND l_s_range TO e_t_range.
endif. -
Friends,
i have an urgent requirement on creating an authorization variable. Please bear with me, because i havent done this before. the requiremnet is to create an authorization variable based on Sales rep id such that the sales rep should be able to see data relevant to him only. Can you tell me how do i do that? I saw many documnetationsn online but i dont understand the sequence, i am not sure how to go aobut it.
Points will be rewarded to all helpful answers.
thanks
Laura.Laura,
Here is the link which gives you all the required information
http://sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/1b439590-0201-0010-ea8e-cba686f21f06#search=%22authorization%20variables%22
Let me know if you still have questions. -
Authorization variables are used by each query
Hi,
I am working with BW 3.5. I need to check how many authorization variables are used by each query.
Is the any table which shows this?
I know in RSZGLOBV i can display all the Auth. Variable at the system but i don't have such relation with the queries...
Thanks in advance,
FHi,
Get the UID of your query from the query designer (select query in the properties window, goto Advanced tab).
Pass it to table RSZELTXREF (pass query UID to field SELTUID and 'VAR' to field LAYTP). This gives the list of variables used in the query. Now got to table RSZGLOBV, pass all the variable IDs (field values for TELTUID from table RSZELTXREF) to the field VARUNIID and restrict VPROCTP to '6'. This gives a list of all the auth variables used in a query.
Regards,
Murali.
Maybe you are looking for
-
Oracle 8.1.5 windows NT 32 BIT and we want to migrate to 10.2.0.1 on windo
We have Oracle 8.1.5 windows NT 32 BIT and we want to migrate to 10.2.0.1 on windows 2003 64-BIT Please suggest me what is best way ...to go for export import or taking cold backup and migrate Think twice because i m going for production ANY UPDATES!
-
Any deas if when Vodafone UK plan to release an update?
-
N/A Edited by: PhoenixBai on Dec 10, 2010 10:35 AM
-
My iphone 4 will not charge and the battery is dead how do i fix this?
My iphone 4 will not charge and the battery is dead how do i fix this?
-
Any e-commerce sites on NW Web AS success stories?
Hi, I am just wondering are any e-commerce sites running successfully on NW Web AS? Or it is not suppose to be? Can anybody provide me with URLs here? Apart of www.sdn.sap.com which is not best example in availability so far . Thanks. Slav.