How do Auth Groups assigned to BOMs

Similar Messages

• List of Auth Group Sorted By Modules needed.

  All
  I have been trying to create the Display Roles for
  FI
  SC
  HR
  modules
  I need to add the Auth Group for S TABU DIS.
  Can someone please tell me if there is any link out there
  that has the Auth Group SORTED by Modules (FI SC HR etc)
  Thanks,
  From
  PT.

  I am not aware of any specific table which holds the table group : module link, other than the naming convention of the table groups and of course correct assignment to tables. So, you could try by sorting TDDAT on field CLASS.
  Take note that the transaction and master data tables (indexes) of the modules typically do not have auth groups assigned, and are therefore replaced by a symbolic group '&NC&'. I don't think it is possible or desirable to assign auth groups to all tables for display purposes, and then still split them into modules. Basis folks can become irritated when people browse VERY large indexes. Business owners as well when they realize that these roles can bypass all their application and org controls to protect their data.
  Cheers,
  Julius
  PS: I see 41 unresolved questions. 9 are no longer outstanding.

• How to Assign Event to Auth Group

  Hello All,
             Please suggest is there any way to assign Event to Auth Group.
  Scenario is:-
  Add event ZHCM*  to its own authorization group.These changes to SM64 are needed in order to assign the transaction (restricted to the custom program only) to Payroll for kicking off their interfaces after each payroll run. Please create custom auth group say ZPAY and assign the ZHCM* event to this new auth group.
  Thanks in Advance !!
  Best Regards,
  CB

  i hope you are assigning to the radio group not to a radio button. i mean u could have radio group xx with buttons butt1,butt2 , butt3 etc. u cant have
  xx.butt1 := 100
  Besides that it's perfectly acceptable by oracle to assign to a radio group unless of course the variable is badly spelt
  Hope this helps
  Lewis

• How to get list of Users under an Auth Group (for executable Programs)?

  Hi experts.  I have a requirement to get a list of all users under a particular Auth Group for Program Objects.
  Goal of this requirement is to identify the users allowed to use/access a program - we're doing some sort of Program Inventory and we'd like to identify the users per program, via the Auth Group. 
  So question is:  Which tables hold data about Program <-> Auth Group <-> Users, and how are they linked?
  I know this is Basis/Security stuff, but I was thinking of developing a report program to output the information needed.
  Thanks in advance.
  Edited by: George Esquerra on Nov 17, 2011 10:24 AM

  This is available in the standard via tx SUIM - user - users by complex selection criteria - by authorization values.
  If you enter auth object = S_PROGRAM and value = auth group, you will get the list of users.
  You can analyse how this program finds the information and incorporate it into your own logic.
  Thomas

• Assigning Auth group using std program

  Hi All,
  I am working on assigning Auth Groups to few of my programs...and for this I used the standard program provided by SAP i.e. RSCSAUTH. Now one of my program is in RQ and I need to change the auth group attached to it ... can I change the auth group attached to that program using the same program RSCSAUTH (without doing any changes in the development box or without creating the new transport)..... can you please help me with this.
  Thanks,
  Rajeev Gupta

  Hi rajiv, iam facing the same porblem, can you pls guide me on this. iam new to authorizations. Thanks.

• Program to assign auth group to the tables?

  Hi everyone,
  Does anyone of you know if there is a program that I can use to assign the auth group to the SAP std table(in case if I need to) and customized tables. I know I can goto Se54 and assign an auth group there but was hyst wondering if there is a program like RSCSAUTH which we can use for assigning the auth group to the programs.
  Please suggest.
  Thanks,
  Raj

  Hello Raj,
  You donot assign auth. group to tables but rather to the Maintenance Generator.
  I think SAP will not provide any std. program for this.
  Maybe other SDNers have some better ideas to share.
  BR,
  Suhas

• How to get tasks assigned to me or group in which I belong to using Search Query?

  Hello,
  I want to get the tasks assigned to me or tasks assign to me in which I belong to. I know how to get it using CAML query however I want to get it in my custom search display template using Content Search Web Part.
  <Or>
  <Membership Type="CurrentUserGroups">
  <FieldRef Name="AssignedTo"/>
  </Membership>
  <Eq>
  <FieldRef Name="AssignedTo"/>
  <Value Type="Integer">
  <UserID/>
  </Value>
  </Eq>
  </Or>
  Please let me know how to filter tasks assign to group in which I belong to.
  Here is query which shows tasks assign to me but not to tasks assign to my groups
  (ContentType:Task OR ContentType:RequestTaskContentType OR ContentType:DelegacyAccountingContentType) AND
  AssignedTo:{User.Name} AND
  -Status:Completed AND -Status:Closed AND Status:"Not Applicable"
  Thanks & Regards,
  Jay
  Jayesh Prajapati

  Hi Jay,
  No, you can filter tasks assign to group in which you belong to using Content Search Web Part. Because there is no Query variable for current user group in SharePoint 2013 Search Query. You can have a look at the article:
  https://technet.microsoft.com/en-in/library/jj683123.aspx?f=255&MSPPError=-2147217396
  For a workaround, you can use the My Tasks web part outside of MySites:
  http://bernado-nguyen-hoan.com/2013/03/03/making-my-tasks-web-part-available-outside-of-mysites/
  http://yalla.itgroove.net/2014/04/27/use-sharepoint-tasks-web-part-outside-sites/
  Best Regrads,
  Eric
  TechNet Community Support
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
  [email protected]

• Auth control of materials & BOM's

  hi,
  i am from PLM and i would like to know how the authorizations of materials and BOM can be controlled in R3.
  For all i know,
  1. we need to look in to the auth groups
  2. create objects with the required auth group
  3. create a role which has an auth object having this auth group
  4. assign the role to the user to enable to access.
  (Correct me if i am wrong)
  But i am not sure how each step is perfomed and where would we need basis help.
  Also, pls tell me if the entire object(not any particular attribute of the object) needs to be blocked for a user how i can go about doing this.
  Pls advice.

  Dear Sujata,
  Just check this,I'm not sure whether it anwers all your queries.
  1.The org level settings defined in PFCG controls the authorization to view or change or create at plant level or for company code
  etc.
  2.It's not possible to control for material specific,but where as possible at material type level and not at view level or field level.
  3.If my understanding is correct we can control through the authorization objects that are displayed in SU24.
  4.Wherever * is given for an authorization object means ,it is possible to perform all activities or valid for that object.
  I will suggest you to get a test user id assigned with a limited T Codes in a single role and check the details of the role in PFCG for
  better understanding.Or even you can discuss with your Basis consultant.
  Regards
  S Mangalraj

• Anyconnect IKEV2 restricting access via AAA auth Group

  Hi Everyone,
  I have ASA config with 2 connection groups
  Say Group  1 and 2.
  Currently both are assigned to Same Auth AAA group
  One of our external vendor has access to both XM files of connection group 1 and 2..
  If i want Vendor should connect only to  Connection Group 2 should i change the AAA auth group for connection group 2?
  Then even if he tries to connection group 1 it should not work as AAA Auth group will be only assigned to Group 2 right?
  Regards
  Mahesh

  Hi Rick,
  There is info
  Our ASA is configured with two connection groups.Our Vendor has XML files of both the
  Connection groups say                                      1 and 2.
  AAA Authentication group  called ----------------- RSA  ----Two servers are there in RSA group.
  We are using 2 factor Authentication.
  We want vendor to connect to connection group 2 only.
  We have two RSA Authentication  servers they are in HA mode so if one dies other can do the authentication.ASA has only 1 authentication  group called say RSA and both connection groups 1 and 2 are tied to the same Authentication group called RSA.
  If i configure new AAA server group say RSA2 for connection group 2 but it has same 2 servers will
  it restrict the vendors connection to connection group 2 only?
  Also when you say --- authentication server can differentiate between the vendor users and other users and supply a group membership ID in the authentication response?
  Need to know how i can do this?
  Regards
  MAhesh

• Auth group to a table

  Hi All,
  We need to assign an auth group to one of our custom table,,,can you please tell me how can I do that ??
  The only way that I know is to go to se11->utilities->table maintenance generator and there we can assign the auth group. but when I tried doing this I found that Auth group can be of only 4 character long.... but when we created the auth groups for our program we could able to create upto 8 character long.. is the auth grp for the program and table are the same? and if not is there a way where we can see what auth groups are assgined to table (as for a program we can go to table trdir)
  Thanks,
  Rajeev

  Hello
  You can use se54 to create an auth group for a custom table.
  Search the forum for more details
  Regards
  Greg Kern

• Group delivery for BOM's when one of the BOM component has no confirmed qua

  Hi,
  We have an issue. We have group delivery for BOMs. However it might be in some cases that one of the component has no confirmed quantity. Still we do not want delivery for any of the component to be created. What is the easiest way to achive this?
  thanks in advance.
  regards Camilla

  Hi Camilla,
  In VOV7 for the item category of main item Create Delivery Group must be assigned a value X (Form delivery group with one delivery date). If you have this configuration set-up done system will  assign one delivery group for the entire group of BOM materials and all will be delivered on the same date. Can you check this?

• Auth Group for Accounting Doc and Account authorization for  Vendors

  Hi guys,
  I have question regarding Accounting Doc for Vendor and G/l Account.  I have a security client whree I build my business roles for end user but we we configuration client where all the functional focus wokring and doing configuration.  My questiion when I start creating business roles  and start going  into these authorization objects and filling up the field values (F_BKPF_BEK, F_BKPF_BES,  F_BKPF_BLA).
  I won't  see auth group that will be c reated by functional  cocus because they are working on configuration Client and they probably create auth group for above authorization objects in Config lcient and I'm building Roles in my security client. 
  If it is true what would be the best way to create business role.  I'm in realization face of the project  Should I build my roles in Config client?   Please advise.
  Thanks in advance
  Faisal

  What is the benefit of a "security client" in DEV? I don't get it...
  You anyway need to protect the namespace... and the authorizations for role development (SU24) and admin (PFCG).
  Anyway, you have closed your question so we can only lick our wounds now
  Cheers and good luck on your project (let is know how it goes if you stick around for long enough to experience a release upgrade...
  Julius

• Creating a auth group

  Hi,
  I want to restrict access for a user in such a way that he sees only the following tables.
  AGR_define
  TSTC
  USOBT
  All these tables come under the auth group SA, SS or SC which is SAP delivered. Now if I give any of these auth groups, then the user will have access to all the tables within this authorization group. I tried to create a new auth group in SE54 and when i tried to assign the auth group to one of the SAP standard table, it would not let me do it. It gives the following error message ' choose the key from the allowed namespace'
  Is there any way to restrict access to a few SAP standard tables?, thanks in advance
  regards,

  I guess you'll give acces via transaction SM30 or SE16 ? If restricting on auth group is not enough you can try to make a 'transaction variant'. Start transaction SHD0, than you will go through the transaction and after each screen you'll have the possibility to choose what you want to see, with or without context,...So in transaction SM30 you can choose to skip the first screen and with the new transaction the user won't be able to change the table.  You can afterwards assign a transaction to the variant, put this transaction in a role and assign the role to the user. The user will be able to start transaction SM30 but will go directly to the second screen, so he will not be able to put another table in the selection screen.
  When the user is allowed to only those 3 tables you have to create 3 transaction variants. This is a quick explanation, but If this is usuable you'll probably have more info on searching on transaction SHD0

• Group Assignment and Analytics Visibility

  Hello,
  We are thinking of using the Group Assignment feature in On Demand. However, I have not found documentation on how this affects Analytics reporting visibility. I see the options for Manager, Team, and Full Visibility for Analytics. However, I would like to find out if users belong to a particular Group, would they also have visibility to those associated Accounts, Opptys, etc associated with that group in Analytics by using Team Visibility?
  Thanks!

  Imagine if we two are sales rep belonging to the same team then I would see records for which i am owner and also records for which my team members are owner.So we can see each others data provided we are on the same team and team visibility is applied under our user profile.

• Restrict posting period only a limited set of users using Auth Group

  Hi all,
  Can someone help me in restricting posting period to only a limited number of users?
  Currently OB52 settings look like below:
  From Per.1  Year  To Period           From per.2   Year    To Period
      7                 2009         8                          8              2008            8
  My requirement is:
  I want to only few users to post in the 7th period and all others to post in the 8th period.
  I know this can be done via authorization group: Can someone please help me with the steps invloved in solving the same?
  Thanks in advance
  Sidharth
  Basis Administration

  Hi Alex,
  Thanks for your response!
  I have added F_BKPF_BUP object manually in the test role and assigned 0002 auth group in it.
  I have created auth group 0002 and assigned table T001B in SE54.
  Auth group 0002 is then assigned in the OB52 at the last column. This should restrict the posting for period 1 which i need to restrict for some users.
  Now as per the logic, if we dont assign any auth group, users should not be able to post for that period. But in my case user is able to post successfully via F-02.
  Please help me as we need to implement this before month end.
  Many thanks for your valuable help!
  Thanks
  Sidharth