CFolders authorizations

Similar Messages

• How to control cFolder authority through BADI

  Dear Expert,
  We're on SRM 7 and do the integration with cFolder in RFx.
  Now we want to control authority in SRM through BADI.
  In the BADI, we will use function CFX_ACO_API_ACTIVITIES_SET to set authority based on different user and apporver.
  For exemple:
         CFX_ACO_API_ACTIVITIES_SET
                   L_OBJECT_ID = GUID of folder/area
                   I_USER_ACTIVITIES = Read authority for user
  But after we longon cFolder system throught SRM system collaboration link, the authority do not change , still admin.
  Could you please give me some idea about it.(SRM and cFolder are installed in one system server).
  Your help would be really appreciated.
  Thanks & Best Regards,
  Bill

  Hi, 
  That such to use roles for each user:
  SAP_CFX_USRGRP_DELETOR     cFolders: Deletion of User Groups 
  SAP_CFX_USRGRP_CREATOR     cFolders: Create User Groups 
  SAP_CFX_USER_ADMINISTRATOR     cFolders User Administrator 
  SAP_CFX_USER                           cFolders User 
  SAP_CFX_SUPER_USER_ADMIN     Superuser with Admin Rights 
  SAP_CFX_STD_DELETOR                           cFolders: Delete Collaborations in the Standards Scenario 
  SAP_CFX_STD_CREATOR                           cFolders: Create Collaboration in the Standards Scenario 
  SAP_CFX_STATUS_PRF_DELETOR     cFolders: Authorization to Delete Status Profiles 
  SAP_CFX_STATUS_PRF_CREATOR     cFolders: Authorization to Create Status Profiles 
  SAP_CFX_NETWORK_ADMINISTRATOR     cFolders Network Administrator 
  SAP_CFX_EXT_USER_ADMIN     cFolders External User Administrator 
  SAP_CFX_EMAIL_SYSTEM_USER     cFolders System User for Sending E-Mails 
  SAP_CFX_COMP_DELETOR     cFolders: Delete Collaborations in the Competitive Scenario 
  SAP_CFX_COMP_CREATOR     cFolders: Create Collaborations in the Competitive Scenario 
  SAP_CFX_COL_DELETOR                           cFolders: Delete Collaborations in the Collaborative Scenario 
  SAP_CFX_COL_CREATOR                           cFolders: Create Collaborations in the Collaborative Scenario 
  SAP_CFX_CFOLDERS_ADMINISTRATOR     cFolders Application Administrator 
  SAP_CFX_ADMINISTRATOR     cFolders Administrator
  Rgs,
  Pedro Marques

• Authorization in WebDAV for cFolders

  Hi
  I have autorization rules set for the collaboration folder structure from none to write to read etc.
  In cFolders application for that user it all applies. But when I get the WebDAV URL in that user login, these authorizations is not applied. i.e. even folders which are set 'none' (not visible in cFolders application) are visible.
  Is this the way WebDAV behaviour is or am I missing something?
  Regadrs
  Senthil

  Hello Senthil,
  you can use WebDAV for two purposes:
  a) maintenance of cFolders settings with special URL
  b) to maintain documents in cFolders via the MS Windows Explorer using the SAP NetWeaver Portal Drive.
  You do not need the Enterprise Portal to be installed to use the WebDAV functionality together with SAP NetWeaver Portal Drive.
  The name SAP NetWeaver Portal drive is a little bit misleading.
  It is called Portal drive, since it is the WebDAV client for the Knowledge Management (KM) of the portal also.
  When using the SAP NetWeaver Portal drive with cFolders no portal is required as the SAP NetWeaver Portal drive acts also as WebDAV client for cFolders. The SAP NetWeaver Portal drive is a 3rd party WebDAV client from a company called XYTHOS (http://www.xythos.com/home/xythos/company/company.html), which can be used by SAP customers for free.
  You can download the Installer for the SAP NetWeaver Portal drive from SAP Service Marketplace under http://service.sap.com/swdc
  -> Download -> SAPSupport Packages and Patches -> Entry by Application Group
  -> SAP NetWeaver -> SAP NetWeaver -> SAP NetWeaver2004s -> Entry by Component -> Frontend -> Portal Drive 4.4
  Documentation:
  Integration of cFolders with a WebDAV Client
  http://help.sap.com/saphelp_ppm400/helpdata/en/1b/8688428b42c553e10000000a1550b0/frameset.htm
  Configuration of SAP NetWeaver Portal Drive for KM (most of the stuff is valid also for cFolders)
  http://help.sap.com/saphelp_nw04s/helpdata/en/42/e6753939033ee5e10000000a1553f7/frameset.htm
  Working with Folders in Windows (Portal Drive) for KM (most of the stuff is valid also for cFolders)
  http://help.sap.com/saphelp_nw04s/helpdata/en/42/c99b91341a6bade10000000a1553f6/frameset.htm
  Important: you must not use the Microsoft WebDAV interface for maintaining documents in cFolders collaborations. It does not fit to cFolders as there are security issues with using Microsoft WebDAV (my network places) together with cFolders
  Regards
  Peter

• Authorization objects in cFolders

  Hi Folks,
  I would like more clarity on the following authorization object in cFolders.
  CFX_APPL - what's the purpose of this object and what are the allowed values for the field APPL_AREA? What is meant by the term "Application area in cFolders" which is the SAP description for this object?
  CFX_USER - this auth object has a single field USER_TYPE. Standard SAP roles have the values 'user', are there any other allowed values here and what is their behavior.
  Thanks for any help.
  Cheers,
  Lashan

  Hi Lashan,
  1- the definition of auth. object CXF_APPL is following:
  This authorization object is for the cFolders application. If a user has authorization for this authorization object, he or she can make administrative settings.
  You can use the following field values (for APPL_AREA):
  - 'Network_Definition': Setting up the network, for example, absolute URL or FTP server settings
  - 'Content_Definition': Setting up cFolders content, for example, adding generic objects; choosing scenarios to use
  - 'Layout_Definition': Setting up the cFolders layout, for example, style sheets
  The permitted activites are: 02 Change and 03 Display.
  2- The definition of CFX_USER is as follows:
  This authorization object is for the cFolders application. This authorization object must be assigned to the user who wants to use cFolders.
  The user needs the following field value to use cFolders:
  USER_TYPE = User (no other values exist)
  I hope this answers your question.
  Regards,
  Silvia

• Authorizations in cProjects 4.0 and cFolders

  Hi all,
  We implemented cProjects 4.0 using EP 7.0. I have used the standard SAP deleivered roles for cprojects in backend system for cprojects and cfolders (Ex: SAP_CPR* and SAP_CFX*). I would like to control on 'project type' as there are two regions that I need to control the projects. One region is not supposed to view the projects of other region and vice-versa. I entered the respective project type for each region in the auth object 'CPRO_PTYPE', and assigned the role to that region. But doing this is not limiting each region to see only their project type. They are able to see projects of other region also..
  Any help on this would be greatly appreciated. Also web links or documents to understand the authorizations in cprojects will be very helpful.
  thanks,
  Sashank Kondru

  Hi,
  maybe the online documentation on cProject can help here. Please go to
  http://help.sap.com and select:
  mySAP ERP
    --- SAP cProject Suite
  There you can find the online documentation on cProject Suite 4.0
  In the documentation you'll find all the necessary information on the auhtorisation objects listed under:
  SAP Project and Portfolio Management Security Guide
    - Authorizations
  I hope this could be helpful for your.
  Best regards,
  Christoph Hopf

• Authorization inheritance in cFolders

  Hi !
  Is there any way of over-riding the inheritence of authorization in cFolders? In cFolders a lower level element automatically inherits the authorization matrix of the higher level element and I want to prevent this from happening.
  Lets say for example I have a folder A with 15 documents inside it. A user User 1 has got read authorization in folder A and so by default he has read authorization in all the documents in the folder. Now suppose I want to restrict his view to only 8 documents out of 15 I'll have to manually set the authorization to none in the rest of the documents. However if a new document gets created in thefolder then the default authorization for that document is read for user 1 as it inherits the authorization matrix of folder A. I want to prevent it from happening.
  Any ideas?
  Regards,
  Debaranjan Hazarika.

  Hi Lashan,
  1- the definition of auth. object CXF_APPL is following:
  This authorization object is for the cFolders application. If a user has authorization for this authorization object, he or she can make administrative settings.
  You can use the following field values (for APPL_AREA):
  - 'Network_Definition': Setting up the network, for example, absolute URL or FTP server settings
  - 'Content_Definition': Setting up cFolders content, for example, adding generic objects; choosing scenarios to use
  - 'Layout_Definition': Setting up the cFolders layout, for example, style sheets
  The permitted activites are: 02 Change and 03 Display.
  2- The definition of CFX_USER is as follows:
  This authorization object is for the cFolders application. This authorization object must be assigned to the user who wants to use cFolders.
  The user needs the following field value to use cFolders:
  USER_TYPE = User (no other values exist)
  I hope this answers your question.
  Regards,
  Silvia

• Question about authorizations in SRM + cFolders

  Dear colleagues,
  We are working in a SAP SRM 7.0 prototype.
  Right now we are trying to configure cFolders (installed in the same server as SRM and with RFC working) but we've reached a point where we don't certainlly know what can be going wrong.
  After several tries with different user authorizations we've always had the same result, it's impossible to create or assign a collaboration to a bid when creating it due to an error which just says "Error creating collaboration; check user authorization"
  We have tried with different roles configurations (SAP_CFX_SUPER_USER_ADMIN, all CFX roles, just CFX_*_CREATOR roles...) just nearly everything you can think about, but always get the same error.
  The funny thing about it is that when accessing cFolders through BSP application CFX_RFC_UI this user can create folders and other short of objects, as all works fine.
  Thank you very much for your help.
  Miguel

  Hey Miguel,
  Did you ever find a solution for this issue?  I am having the exact same problem.
  My user has all the roles assigned and is able to create collaborations directly in CFolders, but when I try to create it from SRM RFx, I get the message:  "error creating collaboration; check user authorisation".
  If anybody else has come across the same problem, please help!!
  Thanks and happy new year!
  Monica

• CFolders banner authorization

  Hi All,
  In cFolders for the role 'SAP_CFX_USER', the banner is not getting displayed. Can you tell me what is the authorization object to be added for this banner display.
  thanks,
  rajesh.

  Hi Rajesh,
  Go to Settings>Layout. There are options for Banner Left/Middle/Right. Also check the check-box for the "Activate Banner".
  Hope it will solve your query.
  Regards,
  Nishit Jani
  Award points if it solves your query.

• Not able to change authorization in c-folder for zrole

  Hi Experts,
                    we are implementing two envelope bidding for SRM 7.0,Here For technical Evaluator ,we have to create a saparate workarea in c-folder.The roles assiged to technical Evaluator is SAP_CFX_USER for c-folder.Now while i was creating the workarea for technical evaluator, i t was throwing me the error.Cfolder.NoAuthorization.Owner....To remove this Error i assiged
  a authorization object 'ACO_SUPER'..now i was able to create the folder but the problem is..Technical Evaluator is having administration authorization for Public area.
  And i am not able to change the authorization..I tries using CFX_ACO_API_ACTIVITIES_SET  and by passing 'Read' auth in badi parameter  ct_cfx_auth but it is not chaging..
  I am  totally out of clues what to do?????please suggest..

  Hi,
  Can I know how you were able to change authorizations for the cFolders?
  Ganapathi

• Delete Button not appearing in cFolders

  Hi All,
  The user is allowed to upload the document in the cFolders. In the screen where the list of files uploaded is displayed, there are buttons like 'Create', 'Copy' etc. But here there is no option to delete the uploaded file.
  Can any one suggest why the 'Delete' Button is not appearing.....
  Thanks in Advance.
  Regards,
  Mary

  Hi ,
  Are you using custom roles?
  Authorization to delete is missing.
  Two ways you could get that :
  1) authorization object CFX_OBJ should have activity 'delete' (06) in your profile
  or else authorization object ACO_SUPER with activity 'Admin' ( not recommended)
  2) Enable  delete authorization via BBP_CFOLDER_BADI method col_authority_change
  regards
  Alok

• Assigning authorization to status in cFolder status profile

  Working with cFolders, I've written a function module that creates a status profile with statuses for use in a collaboration.  The status profile, several statuses and status transitions are being successfully created.  I am adding user group and role authorizations to the status profile using cl_cfx_api_authorization->set_authorization. 
  I am trying to add user group and role authorizations to a couple of the statuses as well but that isn't working for me.  I'm trying the same set_authorization call as above but I get an error back saying the object doesn't exist.  The message gives me the ID for the status which does exist in the cfs_status table. In stepping though the code it doesn't appear that this method works with statues.  I have used it successfully with collaborations, work areas, and status profiles that I've created.
  Does anyone know how to add user group and role authorizations to a status? Or could someone point me to some documentation?  I'm having trouble finding anything on the cFolder related classes and function modules.
  Thanks
  Terry

  Hello Everyone,
  The statement that,
  According to SAP at this time there is no api call for adding authorizations to the status or status transitions of a status profile.  This has to be done through the user interface.
  still holds good? Has anyone tried setting authorizations for cFolder?
  Ganapathi

• Visibility and Authorisation of Cfolders

  Hi ,
  I am working on a SNC+C-Folders collab project for a major discrete manufacturing co. Am stuck at 2 places in cfolders and would seriously appreciate  some pointers to get me out of this ...
  1. Is there a way to control visibility of non-relevant folders in a public work area in a collaborative scenario. Meaning : If cfolders is accessible to say 3 suppliers : S1, S2 and S3. And I as an administrator from client's(customers) side want S1 to access folders where it uploads files ( or whatever docs) while at the same time not let him see folders accesible to  S2 and S3 ; how can it be configured?  
  2. When I go to the authorisation tab for a particular folder and check "None" for a particular user  ; I expected the folder go invisible  or at least non-accessible to that particular user. However this is not happening . In fact the user can read/write / delete and do all  things with that folder ! Could you please throw some light ...
  Thanks

  Hello
  Please check the below points mentioned below,
  1. As per your explanation, the public folder is been viewed by the client  and the three suppliers (correct me If I am wrong). Now you want that client uploads anything for particular supplier S1 must not be seen to other suppliers S2 and S3.
  You can go in each of the specific supplier(s1) folder authorization, and select write authorization to the specific supplier (s1) and select none authorization to other suppliers (S2 & S3). This will show that the (S2 and S3) can only be able to view the S1 folder/ or be able to view only his(supplier) folder .
  2. In second case, when you select none authorization for the user in particular folder, he will be able to see the folder but inside that folder he wont able to see any thing.
  If still you have any issues please reply.
  Regards,
  Abhishek
  Edited by: Abhishek Deshpande on Aug 1, 2011 2:15 PM

• Private Area not Created in cFolders

  I assigned a collaboration folder (competitive scenario) while creating a Bid Invitation. This creates a public area and I added a document. The bid invitation is then published.
  Now when bidder creates a bid, private area is not being created in cFolders.
  Am I missing some specific settings here or is this a roles issue?
  Please let me know what roles have to be assigned to the bidder so that he can create a new folders/documents in private area.

  Hi Sreenivas,
  Once you create a new collaboration in competetive scenario by default public area will be created.
  To create private area, click on that collaboration then under 'Work Areas' create new work area. This will become private area. Then assign authorizations to this private area to any one of the vendors.
  Reward points if useful.
  Regards,
  Laxminarasimha

• CFolders and DMS Integration

  Hi,
  At present we have DMS. We are going in for cFolders now.
  How do we integrate cFolders and DMS? What are the pre-requisites / configurations needed?
  Where can I find the related documents?
  Regards,
  Rajesh

  Hi,
  please check the cFolders configuration guide (for release 4.0, the guide is also attached in note 973764), chapter u2018cFolders Back-End Integrationu2019 or the Online Help in the SAP Help Portal under http://help.sap.com/ > SAP ERP > SAP cProject Suite > Project and Portfolio Management XX > Design Collaboration with cFolders > cFolders Functions > cFolders Back-End Integration.
  For example, you can use the back-end integration for cFolders to exchange DMS documents. In the DMS system (or so-called back-end system), use transaction CFE02 to export DMS documents to cFolders and CFI01 to import documents from cFolders into DMS.
  Please read the above documentations to see the system and installation requirements.
  Besides creating a RFC destination in transaction sm59, you need to maintain the backend system using transaction CFC01 in the DMS system. At least one cFolders system must be defined in the customizing before backend integration can be used.
  In order to allow the user to create new documents in cFolders, he/she needs write and create authorization in the relevant folder.
  Regards,
  Silvia

• Archiving of documents in cFolders

  Hi,All
  My question is about the Archive functionality within Design Collaboration - Is it possible ???
  I am able to archive documents and they are removed from Design Collaboration area but the questions were asked: where do they go, are they retrievable and how and by whom?
  If it is possible, this is  configuration question?
  Thanks for your answers
  Regards
  DS

  Hi,
  You can select the collaboration to be archived on the collaboration overview and choose Archive. The system then sets a deletion flag and removes the collaboration from the collaboration overview and the cFolders system. (Delete authorization required)
  The marked collaborations can then be archived using transaction sara, archiving object CFX_ARCH.
  Hope this helps...