How to set authorization in QuickViewer

My User wanted to use QuckViewer, SQVI to create their own report from SAP tables.
I am concern about the authorization. I do not want them to see details that belongs to another company.
Given the flexibility of the quickviewer, my question is,
Is it possible to restrict my User to see only their own company info?
Thanks
Bye

Hi Friend ..........
check this link...may it is useful to u.
QUESTION:USERS BY COMPLEX SELECTION CRITERIA

Similar Messages

How to set authorization to limint plant to craete reservation from IW32

Please advice me how to set authorization to limit plant to create reservation from IW31 or IW32 (Maintenance Order).
I set at M_MRES_WWA (authorization object) but it is not work.

Hi consult.,
I am not very sure about the object you are using, but if it is correct(else serch for the correct object), then make a master role for the T-Codes IW31 and IW32.
then make a drived role from the above made role, and assign the object(above searched object) in the object give the value as that of your plant, and activity as per the requirement.
you can maintain as many derived roles as the no. of plants.
hope it helps.
regards,
YK

How to set authorization in more detail for ME11,e.g. material group, etc.?

Hi,
As we know, we can use plant, purchasing organization, purchasing group as authorization object to carry out authorization check when creating purchasing info record in ME11.
But now my customer wants to set authorization in more detail, for example, use material group and some certain fields in vendor master.
It seems standard authorization setting for ME11 cannot do this.
Is there any method to meet the need? or some enhancements or BADi?
Thanks
Wesley

Hi, Akhileshwar
Thanks for your information. I have thought of creating authorization object values, but the problem is where to let SAP carry out the authorization check to the new object in ME11/ME12.
So I think maybe some enhancements can let us write authority check code to do it.
But I am not sure which enhancement or user exit can be used to write this code.
Wesley

How to set authorization - salesman with own customer

Dear all,
would like to know how to set for the following:
User01 cannot create SO/Quotation with the user02's customer.
If fact, we have 10 salesman and they have their own customer individually, each salesman is only enable to use their own customer to create SO/Quotation and they are not allow to see other's salesman's customer or SO/Quotation.
please kindly help.
thank you very much.

Hi,
a solution could be as follows:
- create and mantain a ztable where you stablish the relationship between user and customer (this user can work with those sold-to's).
- use userexit MV45AFZZ, form userexit-field-modificaction and check here if user creating the S.O. is found in ztable. Once you type in your sold-to system will check and you can pop-up an error message and stop the transaction if needed.
- you'll need a developper for this solution.
Regards,
Joan

How to set authorization for only Create infotype record

How can I set the authorization so that the user can only create Infotype 14,15,2010,2001,2006 but cannot change and delete the record for these infotypes.
But user has the authorization to create,change and delete other infotypes.

Hi irene,
1. For this we have to use the
   authorisation object
P_ORGIN
2. It has got the following fields, on which authorisations can be controlled.
AUTHC     Authorization level
INFTY     Infotype
PERSA     Personnel Area
PERSG     Employee Group
PERSK     Employee Subgroup
SUBTY     Subtype
VDSK1     Organizational Key
regards,
amit m.

How to set authorization for BW Workspace in backend and Portal ?

Hello Expert,
                     I have developed one BW Workspace in development environment . I have some query regarding BW workspace authorization for access in portal . Some of the queries are as follows:
1) How many composite provider we can build up inside of one workspace that we can go by Tcode ---RSWSPW ?
2) After activating the workspace it shows in RSWSPW ,but this workspace/composite provider will be available in Info Area(in RSA1) or some area else from where we can see this ?
3) Now our requirement is like that -- we have to provide some workspace for SD power user ,Finace Power user & Marketing Power users, in this situation how can we put authorization in bw workspace like SD power user should not see the FI Power user's & Marketing Power user's Workspace rather than his own workspace ?
4) In our requirement, we are going to produce some bex query on top of bw worksapce composite provider . For creating this query ,we searched provider by puting provider name directly in serach option , but is there any option to search the bw worksapce related composite provider by putting info area name in query search ?
5) In another senerio, we gone to create BO AA OLAP report on top of bw workspace composite provider but in source option we cant see the provider ,infact we could not search the composite provider in search option in source selection ----   do i need to navigate any step in compostie provider to make it enable for BO AA OLAP creation on top of composite provider ?
Expecting and appreciating your guidence and suggestion asap .
Thanks & Regards,
Surajit Pal

Hello Expert,
                 Do you have any idea regarding below questionaries about BW Workspace ?
1) How many composite provider we can build up inside of one workspace that we can go by Tcode ---RSWSPW ?
2) After activating the workspace it shows in RSWSPW ,but this workspace/composite provider will be available in Info Area(in RSA1) or some area else from where we can see this ?
3) Now our requirement is like that -- we have to provide some workspace for SD power user ,Finace Power user & Marketing Power users, in this situation how can we put authorization in bw workspace like SD power user should not see the FI Power user's & Marketing Power user's Workspace rather than his own workspace ?
4) In our requirement, we are going to produce some bex query on top of bw worksapce composite provider . For creating this query ,we searched provider by puting provider name directly in serach option , but is there any option to search the bw worksapce related composite provider by putting info area name in query search ?
5) In another senerio, we gone to create BO AA OLAP report on top of bw workspace composite provider but in source option we cant see the provider ,infact we could not search the composite provider in search option in source selection ----   do i need to navigate any step in compostie provider to make it enable for BO AA OLAP creation on top of composite provider .
Appreciating your early responds and thanks in advance .
Regards,
Surajit

How to set portal authorization in ABAP Webdynpro application

Hi All,
Do you have an idea how to set the visibility for Group UI element based on the Portal user authorization in ABAP Webdynpro , for example if the portal user A(or group A), logins into the portal on click of the ABAP Webdynpro IView then we need to set invisible (hide) the Group UI element in webdynpro ABAP Application.
Do you have any sample code on the same to handle the portal authorization in Webdynpro ABAP?? , please let me know if couldnu2019t understand this requirement or my explanation
Thanks,
PortalUser100

Hi Kris,
Thanks for your reply.
Like however we passed the UserID, can we pass Group ID also to the ABAP Webdynpro application??
Can u get me other things, how to copy of the existing component and i want to give the new name for the component and there i need to modify, i dont want to disturb original component before copy...let me know the procedure for the same??
Regards,
PortalUser100

How to set role based Authorization in JAAS

how to set role based Authorization in JAAS
i had user name , password and role in FileLogin
thanks
arun .v.

http://dev2dev.bea.com/pub/a/2003/04/Kemp_Helton.html?page=last

How de we set authorization ids

how do we set authorization ids for a paticular object in a program...,

Hi,
go thru this url:
http://help.sap.com/saphelp_nw04s/helpdata/en/52/67167f439b11d1896f0000e8322d00/content.htm
AUTHORITY-CHECK
Basic form
AUTHORITY-CHECK OBJECT object
ID name1 FIELD f1
ID name2 FIELD f2
ID name10 FIELD f10.
Effect
Explanation of IDs:
object Field which contains the name of the object for which the authorization is to be checked.
name1 ... Fields which contain the names of the name10 authorization fields defined in the object.
f1 ... Fields which contain the values for which the f10 authorization is to be checked.
AUTHORITY-CHECK checks for one object whether the user has an authorization that contains all values of f (see SAP authorization concept).
You must specify all authorizations for an object and a also a value for each ID (or DUMMY ).
The system checks the values for the ID s by AND-ing them together, i.e. all values must be part of an authorization assigned to the user.
If a user has several authorizations for an object, the values are OR-ed together. This means that if the CHECK finds all the specified values in one authorization, the user can proceed. Only if none of the authorizations for a user contains all the required values is the user rejected.
If the return code SY-SUBRC = 0, the user has the required authorization and may continue.
The return code is modified to suit the different error scenarios. The return code values have the following meaning:
4 User has no authorization in the SAP System for such an action. If necessary, change the user master record.
8 Too many parameters (fields, values). Maximum allowed is 10.
12 Specified object not maintained in the user master record.
16 No profile entered in the user master record.
24 The field names of the check call do not match those of an authorization. Either the authorization or the call is incorrect.
28 Incorrect structure for user master record.
32 Incorrect structure for user master record.
36 Incorrect structure for user master record.
If the return code value is 8 or possibly 24, inform the person responsible for the program. If the return code value is 4, 12, 15 or 24, consult your system administrator if you think you should have the relevant authorization. In the case of errors 28 to 36, contact SAP, since authorizations have probably been destroyed.
Individual authorizations are assigned to users in their respective user profiles, i.e. they are grouped together in profiles which are stored in the user master record.
Note
Instead of ID name FIELD f , you can also write ID name DUMMY . This means that no check is performed for the field concerned.
The check can only be performed on CHAR fields. All other field types result in 'unauthorized'.
Example
Check whether the user is authorized for a particular plant. In this case, the following authorization object applies:
Table OBJ : Definition of authorization object
M_EINF_WRK
ACTVT
WERKS
Here, M_EINF_WRK is the object name, whilst ACTVT and WERKS are authorization fields. For example, a user with the authorizations
M_EINF_WRK_BERECH1
ACTVT 01-03
WERKS 0001-0003 .
can display and change plants within the Purchasing and Materials Management areas.
Such a user would thus pass the checks
AUTHORITY-CHECK OBJECT 'M_EINF_WRK'
    ID 'WERKS' FIELD '0002'
    ID 'ACTVT' FIELD '02'.
AUTHORITY-CHECK OBJECT 'M_EINF_WRK'
    ID 'WERKS' DUMMY
    ID 'ACTVT' FIELD '01':
but would fail the check
AUTHORITY-CHECK OBJECT 'M_EINF_WRK'
    ID 'WERKS' FIELD '0005'
    ID 'ACTVT' FIELD '04'.
Regards
Shiva

New to Apple - Need help. Here is the breakdown. I just got my wife a iPhone 4s and I'm trying to decide how to set it up. Should she get her own Apple ID or use mine? This for some reason is very confusing to me.

Here is the breakdown. I just bought my wife a new iPhone 4s and I'm trying to decide how to set it up for her. Should she have her own Apple ID or use mine? If she uses my Apple ID, will that cause issues with iMessage - say when I'm chatting with someone else and vice a versa. Will our messages show up on each others devices? How will a FaceTime call work? Will the video call come across both our devices (ipad also)?
Just some information that might be of note:
I have the new iPhone 4s, iPad2 and one iTunes account - the iTunes account is my Apple ID which I use also for the iCloud (I think...it's getting murky
What am I trying to achieve is having the ability for me (iphone, ipad) and my wife (iphone) to be able to share and sync just music, apps, movies, etc... I have Google Calender and I have not made up my mind yet if we will share a contacts list (I have large business list). Also this might be of note, I most likely will be using iTunes on my LG LCD TV (appleTV) at some point in the near future.
So, basically I'm confused, which is not unusual for me. If I'm thinking to much inside the box, please let me know and feel free to offer up any suggestions. Even if the suggestion is I'm not asking the right questions. Of course if that is your suggestion, then please tell me the question. And an answer would be nice to.
Thanks.
Bentley

No it's not stealing. They have an allowance that you can share with so many computers/devices. You'll have to authorize her computer to play/use anything bought on your acct. You can do this under the Store menu at top when iTunes is open on her computer.
As far as getting it all on her computer....I think but I am not sure (because I don't use the feature) but I think if you turn on Home Sharing in iTunes it may copy the music to her computer. I don't know maybe it just streams it. If nothing else you can sign into your acct on her computer and download it all to her computer from the cloud. Not sure exactly how to go about that, I haven't had to do that yet. I wonder if once you authorize her computer and then set it up for automatic downloads (under Edit>Preferences>Store) if everything would download. Sorry I'm not much help on that.

My computer recently crashed, got most of my songs except for about 300 becasue they are not authorized for my computer but my computer is authorized, how do i authorize those songs to put them on my playlist?

My computer has recently crashed and i am trying to set up my itunes account back up again. Most of my 796 songs transfered except for about 300 of them. itunes keeps telling me that these songs are not authorized for my computer but my computer is authrized so how do i authorize these 300 songs so i do not lose them? PLEASE HELP!!!!!!

In Itunes,
-Cllick the Upper Left menu icon.
-iTunes Store
-Authorize This Computer...
-Alan

How to set two radius servers one is window NPS another is cisco radius server

how to set two radius servers one is window NPS another is cisco radius server
when i try the following command, once window priority is first , i type cisco radius user name, it authenticated fail
i can not use both at the same time
radius-server host 192.168.1.3 is window NPS
radius-server host 192.168.1.1 is cisco radius
http://blog.skufel.net/2012/06/how-to-integrating-cisco-devices-access-with-microsoft-npsradius/
conf t
no aaa authentication login default line
no aaa authentication login local group radius
no aaa authorization exec default group radius if-authenticated
no aaa authorization network default group radius
no aaa accounting connection default start-stop group radius
aaa new-model
aaa group server radius IAS
server 192.168.1.1 auth-port 1812 acct-port 1813
server 192.168.1.3 auth-port 1812 acct-port 1813
aaa authentication login userAuthentication local group IAS
aaa authorization exec userAuthorization local group IAS if-authenticated
aaa authorization network userAuthorization local group IAS
aaa accounting exec default start-stop group IAS
aaa accounting system default start-stop group IAS
aaa session-id common
radius-server host 192.168.1.1 auth-port 1812 acct-port 1813
radius-server host 192.168.1.2 auth-port 1812 acct-port 1813
radius-server host 192.168.1.3 auth-port 1645 acct-port 1646
radius-server host 192.168.1.3 auth-port 1812 acct-port 1813
privilege exec level 1 show config
ip radius source-interface Gi0/1
line vty 0 4
authorization exec userAuthorization
login authentication userAuthentication
transport input telnet
line vty 5 15
authorization exec userAuthorization
login authentication userAuthentication
transport input telnet
end
conf t
aaa group server radius IAS
server 192.168.1.3 auth-port 1812 acct-port 1813
server 192.168.1.1 auth-port 1812 acct-port 1813
end

The first AAA server listed in your config will always be used unless/until it becomes unavailable. At that point the NAD would move down to the next AAA server defined on the list and use that one until it becomes unavailable and then move to third one, and so on.
If you want to use two AAA servers at the same time then you will need to put a load balancer in front of them. Then the virtual IP (vip) will be listed in the NADs vs the individual AAA servers' IPs.
I hope this helps!
Thank you for rating helpful posts!

How to set an Application Item from PL/SQL

I am attempting to set an Application Item
After login to my app, I want to retrieve a row from my SETTINGS table and populate some Application Items with the settings information so that I can
display some of that settings information on every page.
Just to start, I created one Application Item named F106_YEAR
I then created a Shared Components Application Process which executes on New Session: After Authentication
I created this process as an Anynomous PL/SQL block.
declare
aucyr varchar(4);
begin
select year into auctyr
from settings;
:F106_YEAR := aucyr;
end;
I've tried a couple of other Syntax tricks attempting to reference the Application Item F106_YEAR from within PL/SQL (like V('F106_YEAR') but nothing seems to be working.
I'm sure that I am missing something simple. Can someone tell me how to set an Application Item from PL/SQL?
Thanks in advance.

I'm still doing something wrong because this is not working for me.
I've tried both of the following versions as an Application Process set to run on New Session after Authentication:
declare
auction_year varchar(4);
begin
select year into auction_year
from PBUUC.SETTINGS where rownum < 2;
:F106_AUCTION_YEAR:=auction_year;
end;
and I also tried:
declare
auction_year varchar(4);
begin
select year into auction_year
from PBUUC.SETTINGS where rownum < 2;
APEX_UTIL.SET_SESSION_STATE (p_name, p_value);
end;
F106_YEAR is a global Item (shared components).
The select statement works just fine in SQL*PLUS so I know that it is correct.
If I run the debugger and log into the application, here is the output. Shouldn't I see my Application Process get called if it is set to run on New Session after Validation?
My Application process is named RETRIEVE_AUCTION_SETTINGS
0.01: A C C E P T: Request="P101_PASSWORD"
0.01: Metadata: Fetch application definition and shortcuts
0.01: alter session set nls_language="AMERICAN"
0.01: alter session set nls_territory="AMERICA"
0.01: ...NLS: Set Decimal separator="."
0.01: ...NLS: Set NLS Group separator=","
0.01: ...NLS: Set date format="DD-MON-RR"
0.01: ...Setting session time_zone to -04:00
0.01: NLS: wwv_flow.g_flow_language_derived_from=0: wwv_flow.g_browser_language=en-us
0.01: Fetch session state from database
0.02: ...Check session 695371898690095 owner
0.02: ...Check for session expiration:
0.02: ...Metadata: Fetch Page, Computation, Process, and Branch
0.02: Session: Fetch session header information
0.02: ...Metadata: Fetch page attributes for application 106, page 101
0.03: ...Validate item page affinity.
0.03: ...Validate hidden_protected items.
0.03: ...Check authorization security schemes
0.03: Session State: Save form items and p_arg_values
0.03: ...Session State: Save "P101_USERNAME" - saving same value: "jps"
0.03: Processing point: ON_SUBMIT_BEFORE_COMPUTATION
0.03: Branch point: BEFORE_COMPUTATION
0.03: Computation point: AFTER_SUBMIT
0.03: Tabs: Perform Branching for Tab Requests
0.03: Branch point: BEFORE_VALIDATION
0.03: Perform validations:
0.03: Branch point: BEFORE_PROCESSING
0.03: Processing point: AFTER_SUBMIT
0.03: ...Process "Set Username Cookie": PLSQL (AFTER_SUBMIT) begin owa_util.mime_header('text/html', FALSE); owa_cookie.send( name=>'LOGIN_USERNAME_COOKIE', value=>lower(:P101_USERNAME)); exception when others then null; end;
0.04: ...Process "Login": PLSQL (AFTER_SUBMIT) wwv_flow_custom_auth_std.login( P_UNAME => :P101_USERNAME, P_PASSWORD => :P101_PASSWORD, P_SESSION_ID => v('APP_SESSION'), P_FLOW_PAGE => :APP_ID||':1' );
0.06: ...Process "Clear Page(s) Cache": CLEAR_CACHE_FOR_PAGES (AFTER_SUBMIT) 101
0.06: Nulling cache for application "106" page: 101
0.00:
0.00: S H O W: application="106" page="1" workspace="" request="" session="695371898690095"
0.01: alter session set nls_language="AMERICAN"
0.01: alter session set nls_territory="AMERICA"
0.01: ...NLS: Set Decimal separator="."
0.01: ...NLS: Set NLS Group separator=","
0.01: ...NLS: Set date format="DD-MON-RR"
0.01: ...Setting session time_zone to -04:00
0.01: NLS: wwv_flow.g_flow_language_derived_from=0: wwv_flow.g_browser_language=en-us
0.01: Application 106, Authentication: CUSTOM2, Page Template: 2904114531488186
0.01: ...Session ID 695371898690095 can be used
0.01: ...Application session: 695371898690095, user=JPS
0.01: ...Determine if user "JPS" workspace "1040027630222986" can develop application "106" in workspace "1040027630222986"
0.01: ...Check for session expiration:
0.01: Session: Fetch session header information
0.01: ...Metadata: Fetch page attributes for application 106, page 1
0.01: Fetch session state from database
0.02: Branch point: BEFORE_HEADER
0.02: Fetch application meta data
0.02: Computation point: BEFORE_HEADER
0.02: Processing point: BEFORE_HEADER
0.03: Show page template header
0.03: Computation point: AFTER_HEADER
0.03: Processing point: AFTER_HEADER
0.04: Computation point: BEFORE_BOX_BODY
0.04: Processing point: BEFORE_BOX_BODY
0.04: Region: Auction_Title F106_AUCTION_YEAR

How to set custom HTTP header for single sign on

Currently we just begin to use an application called "etran". This application requires user name and password to login. Now, my assignment is to integrate etran application in our internal application. This means that somewhere in our internal application, there is a link leads to the etran application.
It is going to be single sign on, that means that once user logs into our internal application, when he/she clicks on the etran link, no sign on to etran is needed.
I consult with the technical people in etran. they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?
Thanks in advance for your help.

sharon38_74 wrote:
they said that our internal application needs to send a "login request" to etran via SSL with the user's information encoded in base 64 format. etran captures the HTTP header containing user authentication and authorization information, and parses the required information from the HTTP header.
My question is that how I set user information in HTTP header? From my understanding, once I am able to set the user information in HTTP header, it is in base 64 format?Your application need to act like a proxy. You can invoke a HTTP request programmatically using java.net.URLConnection. You can set request headers using URLConnection#setRequestProperty(). Also see the API docs: [http://java.sun.com/javase/6/docs/api/java/net/URLConnection.html]. You only need to know the header field name where to set the Base64-encoded value in. You need to Base64-encode the value yourself.

How to set user settings insap

how to set default settings

n SAP Easy Access screen System -->User Profile -->Own Data. In which, in the defaults tab you can change the change the formats for the user and save the settings
actually all time's we dont have authorizations to change those..
and SU3 tcode is alos correct
Regard points if useful
Regards
sas

How to set authorization in QuickViewer

Similar Messages

Maybe you are looking for