Looking to Migrate to Analysis Authorisation from 3.x  Migration

Similar Messages

• Looking to migrate my license from windows to mac, Is there a roadmap to accomplish?

  Looking to migrate my Windows license to Mac. Hoping there is an easy way to accomplish?

  OK.  You'll need to Contact Customer Care
  USA - 1 (800) 833-6687
  Or use Live Chat and tell them you need a cross grade for CS6.  There are a few hurdles you must go through to get it.
  Nancy O.

• Exception when connecting to Reporting and Analysis services from Java API

  Hello,
  I'm trying to connect to Hyperion Reporting and Analysis services from Java API using [Developer's guide|http://www.bidw.in/docs/hs_developer.pdf] .
  I get this error:
  com.sqribe.rm.ReportMartException: com/hyperion/css/CSSException
       at com.sqribe.rm.SessionImpl.convertError(Unknown Source)
       at com.sqribe.rm.AASessionImpl.open(Unknown Source)
       at com.sqribe.rm.AASessionImpl.internalInit(Unknown Source)
       at com.sqribe.rm.AASessionImpl.<init>(Unknown Source)
       at com.sqribe.rm.SessionFactory.getInstance(Unknown Source)
       ...My code:
  String user = "user";
  String pwd = "password";
  String host = "my.hyperion.server";
  int port = 6800;
  try {
       Session theSession = SessionFactory.getInstance(user, pwd, host, port);
       Repository theRepository = theSession.getRepository();
  } catch (UserValidationException e) {
       e.printStackTrace();
  } catch (UnknownReportMartException e) {
       e.printStackTrace();
  } catch (ReportMartException e) {
       e.printStackTrace();
  }I have tried to look at my services running, and it all looks OK. I've checked user/passowrd/port for GSM. What can be wrong?
  I also tried to run samples from \BIPlus\SDK\samples\java, e.g. Login.java:
  #> java Login user password my.hyperion.server 6800with this effect
  com.sqribe.rm.ReportMartException: SystemExceptionError
          at com.sqribe.rm.SessionImpl.convertError(Unknown Source)
          at com.sqribe.rm.AASessionImpl.open(Unknown Source)
          at com.sqribe.rm.AASessionImpl.internalInit(Unknown Source)
          at com.sqribe.rm.AASessionImpl.<init>(Unknown Source)
          at com.sqribe.rm.SessionFactory.getInstance(Unknown Source)
          at Login.<init>(Login.java:36)
          at Login.main(Login.java:69)I'm sure that I'm connecting to the server because when put wrong passowrd or user as input to Login class I get this:
  com.sqribe.rm.ReportMartException: AUTHEN_CSSLoginFailed
          at com.sqribe.rm.SessionImpl.convertError(Unknown Source)
          at com.sqribe.rm.AASessionImpl.open(Unknown Source)
          at com.sqribe.rm.AASessionImpl.internalInit(Unknown Source)
          at com.sqribe.rm.AASessionImpl.<init>(Unknown Source)
          at com.sqribe.rm.SessionFactory.getInstance(Unknown Source)
          at Login.<init>(Login.java:36)
          at Login.main(Login.java:69)so it is there but something is wrong later. Any idea what?
  Please help.
  regards,
  Pawel
  Edited by: Paoro on 2010-09-27 02:02

  HI,
  I am getting the same error while running the Login file, Did any one resolve this issue?
  Please share the solution.
  Thanks.

• BI analysis authorisations direct assign to user in RSECADMIN

  Hello,
  In RSECADMIN it is possible to directly assign the 'analysis authorisations' to user-id's
  It is also possible to assign the 'analysis authorisations'  to a role via the authorisation object S_RS_AUTH
  Can somebody tell me
  -    what are the pros and cons of directly assigning the analysis autorisations to the users in the RSECADMIN ?
  -    In which situation is direct assigning in RSECADMIN used ?
  -     IS dirtectly assigning to users in RSECADMIN in a production environment critical?
  -     what does SAP propose: directly assigning in analysis authorisations our via a role
  In our case we have the situation of
         BI system with a large number of analysis authorisations. The values of the analysis authorisations should be  
         maintainable in production environment.
         We have also to take in mind:
                            -  Roles are added to users via CUA ( RSECADMIN is not maintainable via CUA)
                            -  Business Objects is coming. So set up the authorisations that they can be used for Business Objects
                            -  Flexible ( new autorisation relevant info Objects)  should be easy adeptable.
         What we want to use is
                                   - assigning analysis authorisations via a single role ( in a composite ) to the user
                                   -  a variable in the analysis authorisations as field value  of a characteristic. In that case the values can be  
                                      assigned dynamically in production.
                                     the data access role has the link to the analysis autorisations in the RSECADMIN.
                                    this analysis authorisation contains variables instead of a fixed field value.
                                    The values of the variables are maintained in a table in a production environment
           Is using directly assigning analysis authorisations to users in the RSECADMIN in  the production environment an  alternative  ? 
      Thanks for your answers
      With Kind Regards,
      Vincent
  Edited by: Vincent Willems on Apr 7, 2011 10:37 AM

  Hello Vincent,
  My way of working is to follow the structure you have in the providing systems. If you have created a role for a production employee then try to translate the roles for the production analysis the same way in BI. You can use the s_rs_auth object. In HR you can use structural authorizations, you can use some programs to set the structural authorizations in BI and that will be done by creating an analysis object and add this to the user involved. Also updates from structural authorizations will be done automatically by these programs. I should not add your own objects to single users, that is a lot of maintenance you do not want. Use in BI the same concept as in the providing systems, it is more clear for anyone who has to work with it.
  Have fun
  Bye
  Jan van Roest
  PS. Did you solve your problem? If so please close your question
  Edited by: J. van Roest on Jul 7, 2011 12:51 PM

• Is it possible to manage Analysis Authorizations from the portal?

  Hello,
  We are using NW04s SP9 and BI 7.
  Is it possible to manage BI's Analysis Authorizations from the portal? If yes than how?

  hi
  In portals  there is a saying  all authentication in portal while authorization in ackend so it goes here also  BI authorization has to be done at backend . a way arround may be that u can migrate roles from backend to portal but in that case you need not create portal contents but authorization still remains at backend,hope this helps you please do not forget to give points
  With Regards
  subrato kundu

• Doubt in Analysis authorisations

  i have implemented analysis authorisations in BW 7.0 System
  After that when i login to the query using a user id where analsysis authorisation is implemented,
  I could not see the Report directly. I have to apply filter and then only i was able to view the report.
  My question is, when u implement analysis authorisations , you will be able to view the report direcly or you will be able to view the report only after applying filters

  > You need a authorization-variable in your filter for
  > the infoobject IO_DEPT.
  Be aware that there is no need to use authorization variables in SAP BI 7.0!!!
  This is one of the great GREAT advantadges of using analysis of authorizations.
  What you need is to define the adequate authorizations to access query/workbook and funcionality. Analysis authorizations does not relate with funcionality access, only with providers and data access.
  Q: "When ever u implement Analyis Auth, you will be able to see filtered data directly or you have to do that Filter changes and only view the data. "
  A: You only view the data, no need to filter. Once again, use the log from the analysis authorization to see the information the system provides.
  I defined the following technical objects in a
  separate "technical authorization":
  0TCAACTVT Activity in Analysis Authorizations
  0TCAIPROV Authorizations for InfoProvider
  0TCAKYFNM Key Figure in Analysis Authorizations
  0TCAVALID Validity of an Authorization
  Message was edited by:
          Miguel Costa

• Analysis authorisation tables

  Hi, is there any table I can use to determine the content of analysis authorisations assigned to users rather than look individually in each user via RSECADMIN?                                                                                Thanks,  Mark.

  Hi Mark,
  I hope you have posted the question in multiple areas. Please post all the BI related questions in BI forums. However, you can refer all the RSEC* tables. Below are the tables that stores analysis authorizations information:
  RSECHIE - Status of hierarchy authorizations
  RSECTXT - Authorization text
  RSECVAL - Authorization Value Status
  RSECBIAU - Changes to Authorization (Last Changed By]
  RSECUSERAUTH - BI Analysis authorization u2013 assignment to users
  Change log tables:
  RSECUSERAUTH_CL   - Assignment of users
  RSECHIE_CL - Change log of hierarchy authorizations
  RSECTXT_CL - Authorization texts
  RSECVAL_CL - Authorization Value Status
  Hope this helps!!
  Rgds,
  Raghu

• Analysis authorisation settings

  Hi All
  When using the standard business content characteristics , 0TCAACTVT,0TCAIPROV,and 0TCAVALID, within analysis authorisations. Do these characteristics need flagging as authorisation relevant in all clients, Dev Uat and Prodn, as at present they are only authorisation relevant in our Dev client, even though the authorisation exists in all clients.
  Thanks
  Simon

  Hi,
  Yes, these characteristics need to remain flagged as authorization relevant in all systems and clients. If not, please ensure to transport these characteristics from DEV first before transporting analysis auths.
  Thanks,
  Deb

• Deleting Automatic Generated Analysis Authorisation

  Dear All,
  We are generating Value and Hierarchy analysis authorisation automatically with the help of DSOs 0TCA_DS01 and 0TCA_DS02.( through RSECADMIN )
  Upon generation everytime, it first deletes all the previously generated analysis authorisation ( for the users that are available in these DSOs ) and creates new ones with the name starting as RSR_*.
  If the username for a particular user is not present in these DSOs, system will not delete / create anything for those users.System deletes / creates analysis authorisations only for those users that are available in these DSOs.
  Suppose a user a going out from the organisation, in that case we need to manually find out all the analysis authorisations ( RSR_* ) that were previously generated for that user and delete the analysis authorisations manually.
  This is time consuming process.
  Could you please advise any automatic / simpler way for deleting previously generated analysis authorisations for such users.
  Assume that these users are not available in the new data loaded in these DSOs.
  Thanking You,
  Tarun Brijwani.

  Hi Tarun,
  If a data record with the user name 'D_E_L_E_T_E' is loaded into the DataStore object 0TCA_DS01, first the generated authorizations for all users in the BI system for the DataStore object record are completely deleted (separated by the first part of the name before the digits) and then generated for the rest of the data.
  Please refer the following link for more information.
  http://help.sap.com/saphelp_nw70ehp1/helpdata/en/55/46eb411a7f6324e10000000a1550b0/frameset.htm
  Thanks,
  Krishnan

• Regarding the analysis authorisations.

  Hi experts,
                       I was new to concept analysis authorisations .Actually i am creating the authorisations for the company code we are having 10 company code among that one for 1100 i am creating the authorisations for to restrict the data of the 1100 to an particular user .Using the analysis authorisations i created and passed the parameters 0tctactv ,....ect like this on which infoprovider,and on which company code i am making the restrictions to the particular user .when i am executing the particular user all the reports what ever it is having on the cube is comming but here i need to get the report based up on only the company code 1100 .but i dont need the data from the 1000,2000,like that for that user.can you tell me experts where exactly i am doing the mistake .if it is possible can you give me the screen shots for the analysis authorisations .
                                                     bye.

  Hi,
  Use following link to create role and auth object
  http://help.sap.com/saphelp_scm50/helpdata/EN/0c/515bb287fe41829556fb4227820e52/content.htm
  Regards
  Pramod

• BI7. Analysis Authorisations: 0TCA_DS01 to 0TCA_DS05

  Good day
  For those who have already implemented Analysis authorisations, PLEASE help?
  I am investigating analysis authorizations and also need to implement at our site.
  What I need to know is what objects are delivered with the template DSO's 0TCA_DS01 to 0TCA_DS05? Should they have any transformations, DTP's and datasources?
  I am a bit lost on how this should work. I have gone through numerous links and instructions, with no success at all. Seems as if this whole concept of analysis authorisation is escaping me.
  Please assist with any detailed information regarding the HOW TO, or STEP-BY-STEP instructions.
  Thanks in advance.
  Cj

  Hi Cornelius,
  you're right, there is no data flow available for those DSO objects. What dataflow would you expect? You want to upload the auth data via flat file? Or you want to load from another source system by an dedicated logic or perhaps with an workflow as a trigger? You see, it's not that simple to deliver "the one and only" dataflow. The mentioned objects are templates as the program to generate the analysis auth expects a special order of the fields which are given when you use the ODS objects..
  Read more here, http://help.sap.com/saphelp_nw70/helpdata/en/59/fd8b41b5b3b45fe10000000a1550b0/frameset.htm
  You have to create the dataflow by your own, regardless if you want to use 3.x dataflow or 7.0. The only thing you have to ensure is the correct order of the field in the DSO whit the values you want to use later in the generation.
  Hope that helps a bit.
  Best regards,
  Maik.

• How can I fake my FROM email address to look like I'm sending it from work?

  I want to not have to log into my work webmail everyday and I want to just use MobileMe. I have all my work mail forwarded to MobileMe. The problem is that I don't want to ever have to log into work mail to send a message. How can I fake my from email address to look like I'm sending it from work?

  You can't do that with MobileMe. MobileMe's mail servers will only accept senders from their own domains (@mac.com and @me.com). No other senders, not even from configured personal domains, will be accepted.
  You will either have to use your companies SMTP server or, if not public available, your companies webmail.

• Looking for a printer to print from iPad. I like canon. I have iOS 5.0.1

  Looking for a printer to print from IPad. I like canon. I have iOS 5.0.1. What are people using.

  This article has a list of all AirPrint capable Canon printers: http://support.apple.com/kb/ht4356

• BI7 Analysis Authorisations - relationship between value & hierarchy auths

  Hi all
  Does anybody know how we can set up the new analysis authorisations to allow a user to use a Query selection for cost centre based upon a hierarchy and yet restrict the cost centre data they can display by value authorisations?

  SDN is the place to discuss technical problems..
  Please avoid such weird post.
  G@urav.

• I am looking to seperate my icloud account from my wife's in one apple ID

  I am looking to seperate my icloud account from my wife's in one apple ID

  One of the phones can keep the current account; on the one that will be moving go to Settings>iCloud and turn all data that is syncing with iCloud (contacts, calendars, etc.) to Off.  When prompted choose to keep the data on the iPhone.  After everything is turned off, scroll to the bottom and tap Delete Account.  (This will only delete the account from this phone, not from iCloud.  The other phone will not be effected by this.)  Next, set up a new iCloud account on this phone using a different Apple ID and turn iCloud data syncing for contacts, etc. back to On.  When prompted, choose Merge.  This will upload the data to the new account.  At this point you will have two different iCloud accounts, one for each phone, with identical data on them.
  You will then have to go to icloud.com on your computer and sign into each iCloud account separately and manually delete the other person's data (such as deleting your wife's contacts from your account, and vice versa).  These changes will be reflected on each phone.  When finished you will have individual iCloud accounts with just your own data on them.