ERM - Role Data Authorization

Similar Messages

• What Roles and Authorization Req

  Hi All,
  I am getting the Error in SOAP to RFC Sync secnario.
  User using one URL through that URL he is trying the send the data to before sending the req user have the USER ID and Password. what are the Roles and Authorization req for that user id and password. Are they service user id ?
  Regards

  This user ID have roles similar to Service user PIAPPLUSER or XIAPPLUSER. However, it is recommended not to provide this user detail directly to sender system. Instead create a new user and provide that to your partner.
  Regards,
  Prateek

• Roles and authorizations in BI content

  Hi experts,
  I'm trying to define a very simple scheme of roles and authorizations for my queries.
  So, i'm trying to limit the acess by infocube and DSO, but I'm missing the authorizations objects for Cube and DSO.
  I know that authorization object for queries it's S_RS_COMP.
  So my roles would be something like
  BI_ROLE_FI
  Authorization Object                                  Autorization Object Value
  Acess query (S_RS_COMP)                         NA                              
  Infoobject (whats the object???)                   0FIGL_C01
  DSO (whats the object???)                            0FIGL_O14
  BI_ROLE_PUR
  Authorization Object                                  Autorization Object Value
  Acess query (S_RS_COMP)                         NA                              
  Infoobject (whats the object???)                   0PUR_C01
  Can you help me find out whats the missing information
  Thanks and regards
  Joana

  Hi,
  Iu2019ve gave authorization to the object youu2019ve mentioned, but itu2019s still not working.
  Basically what I have is the following:
  One role that allows me to execute queries, workbooks, etc.
  A second role, dependent on the area of work, that should allow me only to have access to queries  from cubes/MP/DSO that are specific to users area.
  I will then give each user role 1 + the adequate role 2, depending on their work area.
  For role 1 I have got:
  S_RFC     
  Activity: 16
  Name of RFC to be protected: *
  Name of RFC object to be protected: *
  S_TCODE     
  Transaction code: RRMX
  S_GUI     
  Activity: 16
  S_USER_AGR     
  Activity: 01, 02, 03
  Role Name: ANLG_BI_01
  S_USER_TCD     
  Transaction code: RRMX
  S_RS_AUTH     
  BI Analysis Authorization: BI_ALL
  S_RS_COMP     
  Activity: 03, 16
  InfoArea:*
  InfoCube: *
  Name (ID) of a reporting component: *
  Type of a reporting component: *
  S_RS_COMP1
  Activity: 03, 16, 22
  Name (ID) of a reporting component: *
  Type of a reporting component: *
  Owner (Person Responsible) for a reporting Component: *
  S_RS_TOOLS
  Logical Command Name: THEMES
  Iu2019ve tested this role, and it works u2013 they can access queries, create workbooks, create permanent model workbooks
  For role 2 u2013 Finance I have     
  S_USER_AGR     
  Activity: 01, 02, 03
  Role Name: ROLE2
  S_RS_ADMWB
  Activity: 03,66
  Data warehousing workbench Object: INFOAREA
  S_RS_ODSO
  Activity: 03
  Infoarea: 0FIGL_ERP
  DataStore Object: 0FIGL_014
  SubObject for ODS Object: *
  S_RS_ICUBE
  Activity: 03, 66
  Infocube SubObject: *
  Infoarea: 0FIAP
  InfoCube: 0FIAP_C02
  S_RS_MPRO     
  Activity: 03
  Infoarea: 0FIN_REP_SIMPL_1_ERP
  MultiProvider: 0FIAP_M20, 0FIAP_M30
  MultiProvider SubObject: *
  I then gave to my test user this 2 roles, and with that user I can still see every infoarea, and access all reports.
  I will have more specific roles u2013 to other areas (SCM, TV, etc), but I chose this one has an example.
  First question I have: can I manage my requirement in 2 different roles: one for action that can be performed (role 1) and other for areas that they can access data from (role 2)?
  What objects/restrictions am I missing in role 2?
  Many thanks
  Joana

• 'Role Data' tab appearing twice in Business Partner master data

  Hello,
  The 'Role Data' tab is appearing in the master data of business partner for TWO times. The contents of both the tabs are identical. So I know that the only thing that I probably need to fix is the screen sequence. I have followed note 695714 and could not find anything wrong. Can someone please help me with the following queries:
  1. Identifying where we maintain the tab sequence for business partner master data, ie the transaction code or the path in BDT
  2. What is the name used in BP for the 'tabs'... I mean they are not called TABS but I suppose as Screens or Screen Sequence. So, what is the correct name for a Tab in BP master data.
  3. How I can hide the extra tab of Role Data from the BP master data screen
  4. How do we control the sequencing of the tabs, ie whether the address tab should be the first one or the third one or the last one.
  Regards
  Suvarghya Dutta

  Hi Kiran,
  Can you post the query here, which you used in fromatted search.
  I believe you mean to say that by this formatted search, user will have flexibility to choose the field and enter the search value.
  thanks in advance,
  Samir Gandhi

• RFC Sender - Logon User - What Roles and Authorizations?

  Hi,
  Scenario: RFC Sender --> XI --> JDBC
  What necessary Roles and Authorizations has to be given for Logon User (in Sender RFC Communication Channel).
  It has to be moved to production soon. My Client wants to give only Roles and Authorization that are necessary for the Logon User.
  With Regards,
  Manikandan R

  Hi ,
  U need to give ECC Authorisation
  Application server : ECC Server
  Sytsem no : ECC system number
  Logoon User : ECC any username
  password : password for above user
  clientr : ECC client ( From which client u are sending to RFC adapter)
  Regards,
  Jayasimha jangam

• Business Explorer Roles and Authorizations

  Hi,
  I am using Business Explorer Query Designer and Analyzer ( Excel Work book add on) with BI 7.0.
  I need to create roles and authorizations for the end users to create queries and view queries in excel by using Business Explorer Query Analyzer.
  Kindly suggest me what are the standard transactions, roles and authorizations to be given to the end users.
  Thanks and regards
  Murugesan

  I dont have idea about Bi 7.0 ..
  If its bw 3.X i jusz used rrmx --->>excel ->addins-->>queries --->pop up window --->here we need rfs object S_RFC
  Finally rrmx tcode and general roles which has S_RFC  autorisation object and the query .
  Regards,
  Naveen

• BI Content Roles and Authorizations

  Hi All,
  We just installed a BW system and trying to activate the Business Content. But its giving some authorization issues.
  Can anyone please give the list of transactions/roles/profiles/authorizations that needs to be added to my user id so as to install all the Business Contents available.
  PS: Basis is not giving me SAP_ALL and SAP_NEW because of internal issues.
  Thanks & Regards,
  Vikas Sharma

  Hi
  Vikas you need to have S_RS_ADMWB Authorization Object in Ur profile
  that will help U.
  and See the TCode SU53 for the required authorization objects and their activity
  Hope this Helps U
  Regards
  Ajay
  PS : Assign points if helpful

• Custom security JHeadstart 11gTP1 -Use Role-based Authorization is missing

  In JHeadstart 11g TP1 the option Use Role-based Authorization is missing.
  Will this option only be available in de production release of JHeadstart 11g? What is the reason why this is missing? Is it still possible to use CUSTOM authorization in JHeadstart 11g TP1?

  It is not missing.
  If you turn on custom authorization, you can specify your own roles against groups to access them, and use role names in the insert allowed/update allowed and delete allowed expressions.
  Steven Davelaar,
  JHeadstart Team.

• How to set role based Authorization in JAAS

  how to set role based Authorization in JAAS
  i had user name , password and role in FileLogin
  thanks
  arun .v.

  http://dev2dev.bea.com/pub/a/2003/04/Kemp_Helton.html?page=last

• Deleting FICO Roles and Authorizations

  Hi Guys,
  i want to Delete some roles and authorizations from a user profile.I have the user id and I want to know what roles are assigned to the user.
  Which tcode can be used for the same and how to delete the fico roles assigned to that sap user id.
  thanks,
  Srikanth.

  Hi,
  I got the solution. It is SUIM.
  Anyways thanks for the help
  srikanth

• List roles/profiles/authorizations for end user

  HI All
  Can anyone please give the list roles/profiles/authorizations
  that needs to be added to our end user id so as to view
  (Only Display) all the BEx Reports.
  Points assured
  Thanks
  Vijaya

  Hi Vijaya,
  Go through this link:
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a07122ae-8216-2a10-c9a5-996717a0648b
  Thanks,
  Ajay

• About roles and authorizations

  hai friends,
  who will create roles and authorizations plz
  thanks in advance
  suitable answer will be given suitabel points
  kumari

  Roles and authorizations have to be done with Basis team and HR team together, because they are not the usual roles that other modules use. For instance, HR authorizations have different objects for PA, PY, Clusters, BM and CM. For OM and PD, you use transaction OOSP for authorization profiles.
  For my personal experience, when the consulting team ask the basis team to deal with authorizations for HR, they become paralized when they find Structural Authorizations Profiles, Period of responsibility, etc., because they don't know (and it is not their responsibility) about HR objects and concepts handled in txn OOSP.
  In order to avoid this problems, take an extra time for this in your implementation project. Roles and authorizations in HR, when done correctly, takes more time than other modules.

• As XI developer what are the roles and authorization i shoul have in realti

  Hi Experts,
                  As XI developer what are the roles and authorization i shoul have in realtime, as a dveloper is it possible for me to crate namespace and business system, can any one please exaplain me abt business system  in real time scenario.
  thanks
  dhanush

  Hi Dhanush,
  your authorizations will be decided depends on your role in your team.
  yes you will have authorization for creating name space ,but your bussiness system will be created by Basis pesron and assign it to your scenario.
  Business System is a logical entity which represents logical view of your technical system. (eg a client in R3 system can be respresented as business system in SLD) For one technical system you can have multiple business systems.
  Look in to these links for detalis of bussiness systems.
  http://help.sap.com/saphelp_nw04/helpdata/de/31/f0ff69551e4f259fdad799a229363e/frameset.htm
  http://help.sap.com/saphelp_nw04/helpdata/de/87/7277e8fba34421a45d97a41ec27381/frameset.htm
  http://help.sap.com/saphelp_nw04/helpdata/en/7b/d4653fd1d3b81ae10000000a114084/content.htm
  Reward points if found usefull......

• R12.0.04 -Sync responsibility role data into the WF table -affurg02.sql

  Heloo my friend ;
  I try to run the following concurrent requests :
  Sync responsibility role data into the WF table and its gives me error and the erros is :
  Cannot find file /oracle/VIS12/apps/apps_st/appl/fnd/12.0.0/sql/affurg02.sql
  Cause: Application Object Library could not could not locate the file specified.
  Action: Contact your system administrator. Verify that the specified file and
  Concurrent Manager encountered an error while running SQL*Plus for your concurrent request 4585216.
  I didnt find anything in metalink,
  Anyone has idea?
  Helios

  Run "Workflow Directory Services User/Role Validation" concurrent program instead. <<I already did it... the link whihc u send me it doesnt say nothing.. The document say it only
  STEPS TO REPRODUCE THE PROBLEM:
  Navigate > System Administrator > Requests > Run . Select Sync responsibility role data into wf tables program.
  *** 02/19/08 01:59 am ***
  *** 02/19/08 02:00 am ***
  *** 02/19/08 04:09 am *** (CHG: Sta-&gt;30)
  *** 02/19/08 04:09 am ***
  *** 02/19/08 05:50 am *** (CHG: Sta-&gt;11)
  *** 02/19/08 05:50 am ***
  *** 02/19/08 08:44 am *** (CHG: Asg-&gt;NEW OWNER)
  *** 03/06/08 09:34 am *** (CHG: Sta-&gt;30)
  *** 03/06/08 09:34 am ***
  *** 03/16/08 12:31 pm *** (CHG: Sta-&gt;33)
  *** 03/16/08 12:31 pm ***
  *** 03/30/08 10:00 pm *** (CHG: Sta-&gt;92)
  *** 03/30/08 10:00 pm ***
  There is no solution, i found this documentation already but i cant see that
  *** 03/30/08 10:00 pm *** .... i hope u have other idea... i already try what u said me my friend ..
  Helios

• Master data authorization  by geography

  Hi,
  we need to build master data authorization based on geography. need is to have a flexible way of assigning visibility to master data (accounts/ contacts) to sales teams based on the geographical distribution. e.g a sales rep from California should be authorized to view accounts based out of california and no other region.
  can you recommend some ways to achieve this. we know we can define sales orgs to achieve this but we are looking for a more flexible way dont want to change sales org as it has a dependency on back end ERP too.
  thanks
  RH

  Hi RH
  You probably want to look at the Access Control Engine (ACE) - it is designed to meet your requirement.
  Here's a link to get you started. Check out the IMG as well.
  Cheers
  Dom
  http://help.sap.com/saphelp_crm40/helpdata/en/04/0177f9bb67ac4cafb84bb4d4c1d8fc/frameset.htm