SE61 Documentation Maintenance Authorization

Dear SAP,
I am having problem when run Tcode F-28 Post Incoming Payment. System popup and error saying that no authorization. But i did check the user's authorization role and there's no problem with the role. It also saying that to check SE61 Documentation Maintenance Authorization. But i don't any idea on this Txn. Also give you the link below for details of the error after executed Txn SU53.
http://www.upload2world.com/pic108/upload2world_4ed7c.jpg
I will give points for those who help me out this problem. Thanking you in advance for your kind help.
Regards,
Nazrul

Hello
When you run the transaction and when the system says it's an authorisation, immediately type SU53 in the box and take a screen shot.
This screen shot, send it to BASIS team for analysis.
They would let you why there is an authorisation issue and would resolve accordinly
Reg
suresh

Similar Messages

Getting message No maintenance authorization for shipping point 2001

Getting message No maintenance authorization for shipping point 2001 when performing goods receipt for a STO with reference to delivery using BAPI BAPI_GOODSMVT_CREATE.
When same program is executed in program it is working fine.
We have set the SU24 for the program name as no authorization check.
For back ground do we neeed to set anything specific.

Yep. The same also applies to couples of call transactions (see SAP note 358122) - although BAPI's by definition do not and may not check S_TCODE...
The reason for this is because the checks can be turned off in SU24 against specific transactions. BUt when you schedule a program into a background job, then it does not have a transaction context. You will experience similar behaviour if you execute the program directly from SA38, SE38, etc.
Generally, you have 3 options:
- Some functions will expose a "NO_CHECK" or "NO_AUTHORITY" parameter which can be set when calling the function module. Some of them will only let you do it once Others will call themselves again with certain (usually customizable) parameters. You can look for this in the function module documentation, interface and coding.
- Grant the authority to the user ID, and ensure that this is a SYSTEM type user segregated from the dialog users. It would then have this authority, but by design could not start the transaction directly (even if someone did logon as the user...).
- If this object is not intended to be used at all for control in your concept, then you can globally deactivate some authorization objects using transaction AUTH_SWITCH_OBJECTS. The object will have no affect in the whole system when the ABAP application coding checks it in an AUTHORITY-CHECK object statement. The return code is always set to 0, and not only selectively...
You need to be carefull with all 3 options, but they can all three be applied in a secure way.
Cheers,
Julius

Maintenance view problem "No data maintenance Authorization; Display only"

Maintenance view problem
Question 1>>>>
> I have created a table with Display/maintenance allowed and technical setting Data class - APPL0 (master data, transparent tables).
>> Then I have created a maintenance view thought utilities->table maintenance generator where i have specified the Authorization group as &NC& (w/o auth. group)
->and also created a function group and specified in the maintenance screen-> I have selected maintenance type as one step-> i have given the overview screen number->and in Recording routine i have selected - no, or user ,recording routine.
>>> Now when i go to transaction SM30 and put the table name and press on maintain button I get a information box saying "No data maintenance Authorization; Display only".... and it only displays the data.
my problem is I want to enter data through maintenance view (SM30).
2nd Question >>>> once i create a function group for maintenance view how can i assign a transaction for this. (as if i do it as we do for a module pool program it gives me error)Thank you.
kailash

SE93. Enter a transaction name. Create. In the pop up enter a title and select 'Transaction with parameters'.
Next screen fill the following;
Transaction 'SM30'
Check 'Skip first screen'
In the table control at the bottom of the screen
Name of screen field 'VIEWNAME'
Value <your table name>
Name of screen field 'SHOW'
Value 'X'
Save.
Job done.

System Data Maintenance authorization AI_SC_REFRESH_READ_ONLY_DAT

I am running AI_SC_REFRESH_READ_ONLY_DATA as a batch job to load customers for our VAR customers however after this the customers are not created as business partners.
The job log has the message - User S000xxxxx - System Data Maintenance authorization not found for customer 0000xxxxxx.
Checking in user maintenance on the support portal the S-Number used only appears to have authorisations for our internal VAR systems.
How do I get system maintenance authorisation for our VAR client systems - and is this the solution to this error message?
Thanks for your help.

>
Ashley Shannon wrote:
> How do I get system maintenance authorisation for our VAR client systems - and is this the solution to this error message?
You need one RFC per VAR customer number (probably, it's just one RFC SM_SP_ <VAR customer number>).
You require an S-User of the customer with appropiate authorizations. The solution is not add authorization to the VAR S-User, but to get a S-User of the customer.
Add the S-User in AISUSER as follows:
background job user <customer number 1> <S-User without S of customer number 1>
background job user <customer number 2> <S-User without S of customer number 2>
background job user <customer number 3> <S-User without S of customer number 3>
Best regards,
Ruediger

AR Customer Maintenance Authorization Control

Hi All,
I'm using SAP ECC6 and Oracle 10.2.0.4.0.
I wanted to control the authorization for Accounts Receivables (AR) Customer Maintenance.
Currently, there are some tcodes under this role, such as:
1) XD01 - Create Customer (Centrally)
2) FD01 - Create Customer (Accounting)
How can it be control from authorization point of view if I want to allow my user to have DISPLAY authorization only whenever they execute the above tcodes.
For example:
If user execute tcode: XD01 and key in the account group: End Customer, they will not be able to enter any information and save it.
I understand that this tcode is fall under maintenance authorization group, but can it be controlled?
Please kindly advice how can this be done.
Appreciate for any of your help and advice.
Thank you.
Peter

Hi Suresh,
Thank you for your kind response.
I've checked OB31 and found no entries. I've used tcode: SU21 and SU22 to chec the affected tcode: FD01 .
I've also checked and analyzed authorization object F_KNA1_AEN and have configured a dummry role for testing in QAS.
Authorization package in the dummy role:
-> Maintained Customer: Change Authorization for Certain Fields            F_KNA1_AEN
-> Maintained Customer: Change Authorization for Certain Fields            T-QS25298300
->   Field group                VGRUP
For Field group (VGRUP), I'm able to define the "Object Type": D for Customers, but I do not know what is the value for "Field Group"
Please kindly advice how can this be done.
Thank you.
Cheers.

SE61 documentation

Hi,
I would like to create se61 documentation , from abap program dynamically. let me know the steps or sample code to do the same.
Thanks,
Jey

HI,
You can change it dynamically, for this one write a Small BDC program inside the program with N scren mode, so that you can change the Documentaion
Regards
Sudheer

SE61 - Document Maintenance..

Hi,
I have modified a standard text using transaction SE61. The changes were stored in a request and transported to other environments. Now after i transported it, i am not able to view the standard text. when i try to view/change that standard text i getting the following error
'Document LSO_Q_ALERT is itself an enhancement'
Can any one help me on this ?
Regards,
Bharath Mohan B.

Transporting Translation created in SE63

Table and Table maintenance authorization

Dear Experts,
I have a requirement where, I have to create a table with where the table content be displayed using SE16 and have a table maintenance which is given to only specific users.
Request you to please suggest.
Warm regards,
Upendra Agrawal
Moderator message: please do more research before asking, show what you have done yourself when asking.
Edited by: Thomas Zloch on Aug 19, 2011 9:58 AM

U can try to use the event, after generating table maintenance program:
Enviroment->Modification->Events: the events 05/18 could be good for you
Max

SE61 Documentation API

Hello all,
Can anybody tell me how can I extend the existing documenation of a report program with another custom template(document id TX, general text) programatically. My requirement is like this,
I have a custom template document with name TEMPLATE_XY. Now I had created a report program with name Z_REPORT_1 and I also documented that from SE38 txn. Now I have my own screen and there is button over there and if I click that button contect of template document TEMPLATE_XY should be get appended to the existing documentation of the report Z_REPORT_1 and I should be able to additional info into that and save those changes. I want to achieve this programatically with a single button click. Can anyone help me please.
Thanks&Regards,
Prajesh

HI,
You can change it dynamically, for this one write a Small BDC program inside the program with N scren mode, so that you can change the Documentaion
Regards
Sudheer

Restrict the user   based on document type on migo transaction-prepare GRN

Hi,
We are running ECC6.0 R/3 system.We had a requirement as follows
In MIGO transaction , we want to restrict the user on document type i.e. we want that a particular user can prepare GRN for document type STO only. He cannot prepare GRN for other document type.
We checked SU24->maintain check indicators for transaction codes->enter migo->execute->check indicator.This returned us the authorisation objects present in Migo transaction.We checked the help of all these objects,but none of them we found suitable for above mentioned requirement.We were planning to find out the proper authorisation object to add to Profile generater.
The following is the objects which we have checked for.
A_B_ANLKL-->     Asset Postings: Company Code/Asset Class
A_B_BWART-->     Asset Postings: Asset Class/Transaction Type
B_USERSTAT-->     Status Management: Set/Delete User Status
B_USERST_T-->     Status Management: Set/Delete User Status using Process
C_AFKO_AWK-->     CIM: Plant for order type of order
C_CACL_DSG-->     Interface Design
C_DRAW_BGR-->     Authorization for authorization groups
C_DRAW_DOK-->     Authorization for document access
C_DRAW_TCD-->     Authorization for document activities
C_DRAW_TCS-->     Status-Dependent Authorizations for Documents
C_KLAH_BKP-->     Authorization for Class Maintenance
C_STUE_BER-->     CS BOM Authorizations
C_STUE_WRK-->     CS BOM Plant (Plant Assignments)
C_TCLA_BKA-->     Authorization for Class Types
C_TCLS_BER-->     Authorization for Org. Areas in Classification System
C_TCLS_MNT-->     Authorization for Characteristics of Org. Area
F_BKPF_BUK-->     Accounting Document: Authorization for Company Codes
F_BKPF_BUP-->     Accounting Document: Authorization for Posting Periods
F_BKPF_KOA-->     Accounting Document: Authorization for Account Types
F_FICA_FOG-->     Funds Management: authorization group of fund
F_FICA_FSG-->     Funds Management: authorization group for the funds center
F_FICB_FKR-->     Cash Budget Management/Funds Management FM Area
F_KNA1_APP-->     Customer: Application Authorization
F_LFA1_APP-->     Vendor: Application Authorization
F_SKA1_BUK-->     G/L Account: Authorization for Company Codes
G_GLTP -->       Spec. Purpose Ledger Database (Ledger, Record Type,
                               Version)
J_1IDEP_SL-->     Authorization object for depot sale transaction
J_1IEXC_OT-->     Authorization object for Other Excise Invoice Create
J_1IEX_PST-->     Autorization object for posting Other Excise invoice
J_1IGRPT1-->     Auth. for PART1 at GR
J_1IINEX -->            Incoming Excise Invoice
J_1IRG23D-->     Authorisation object for Depo Transactions
K_CCA-->                     CO-CCA: Gen. Authorization Object for Cost Center
                                Accounting
K_CSKS     -->                CO-CCA: Cost Center Master
K_CSKS_SET-->     CO-CCA: Cost Center Groups
K_PCA-->                    EC-PCA: Responsibility Area, Profit Center
L_TCODE-->                    Transaction Codes in the Warehouse Management System
M_ANFR_BSA-->     Document Type in RFQ
M_ANFR_EKG-->     Purchasing Group in RFQ
M_ANFR_EKO-->     Purchasing Organization in RFQ
M_ANFR_WRK-->     Plant in RFQ
M_BEST_BSA-->     Document Type in Purchase Order
M_BEST_EKG-->     Purchasing Group in Purchase Order
M_BEST_EKO-->     Purchasing Organization in Purchase Order
M_BEST_WRK-->     Plant in Purchase Order
M_MATE_CHG-->     Material Master: Batches/Trading Units
M_MATE_STA-->     Material Master: Maintenance Statuses
M_MATE_WRK-->     Material Master: Plants
M_MRES_BWA-->     Reservations: Movement Type
M_MRES_WWA-->     Reservations: Plant
M_MSEG_BMB     -->Material Documents: Movement Type
M_MSEG_BWA-->     Goods Movements: Movement Type
M_MSEG_BWE-->     Goods Receipt for Purchase Order: Movement Type
M_MSEG_BWF-->     Goods Receipt for Production Order: Movement Type
M_MSEG_LGO-->     Goods Movements: Storage Location
M_MSEG_WMB-->     Material Documents: Plant
M_MSEG_WWA-->     Goods Movements: Plant
M_MSEG_WWE-->     Goods Receipt for Purchase Order: Plant
M_MSEG_WWF-->     Goods Receipt for Production Order: Plant
M_RAHM_BSA-->     Document Type in Outline Agreement
M_RAHM_EKG-->     Purchasing Group in Outline Agreement
M_RAHM_EKO-->     Purchasing Organization in Outline Agreement
M_RAHM_WRK-->     Plant in Outline Agreement
Q_TCODE     QM -->         Transaction Authorization
S_ADMI_FCD-->     System Authorizations
S_ALV_LAYO-->     ALV Standard Layout
S_BDS_DS-->     BC-SRV-KPR-BDS: Authorizations for Document Set
S_BTCH_ADM-->     Background Processing: Background Administrator
S_BTCH_JOB-->     Background Processing: Operations on Background Jobs
S_CTS_ADMI-->     Administration Functions in Change and Transport System
S_DATASET-->     Authorization for file access
S_DEVELOP-->     ABAP Workbench
S_DOKU_AUT-->     SE61 Documentation Maintenance Authorization
S_GUI-->                     Authorization for GUI activities
S_OC_DOC-->     SAPoffice: Authorization for an Activity with Documents
S_OC_ROLE-->     SAPoffice: Office User Attribute
S_OC_SEND-->     Authorization Object for Sending
S_PACKSTRU-->     Internal SAP Use: Package Structure
S_PRO_AUTH-->     IMG: New authorizations for projects
S_RFC-->                     Authorization Check for RFC Access
S_SCD0     -->                Change documents
S_SPO_DEV-->     Spool: Device authorizations
S_TABU_DIS-->     Table Maintenance (via standard tools such as SM30)
S_TCODE     -->                Transaction Code Check at Transaction Start
S_TRANSLAT-->     Translation environment authorization object
S_TRANSPRT-->     Transport Organizer
S_WFAR_OBJ-->     ArchiveLink: Authorizations for access to documents
V_LIKP_VST-->Delivery: Authorization for Shipping Points
V_VBAK_AAT-->Sales Document: Authorization for Sales Document Types
V_VBAK_VKO-->Sales Document: Authorization for Sales Areas

Have you executed a trace while a functional user executes the transaction code for the specific parameters? (i.e. document type). The trace will then show which objects are being checked; then look at the object documentation in txn Su21 to determine if there are any ways to restrict on the particular value; in some cases, if the authorization group field is being checked, additional configuration is needed in order to implement the security (Su21 will explain in detail for the particular object).

How to check object code

Dear Team,
I want to check Object Code of T_Code:OMJJ.
In T_code:SE93.it not showing .
How I check Perticulater Object Code for Transastion OMJJ
thanks
kallis

In SU24 it show
@5B\QMaintained@     S_CTS_ADMI     Administration Functions in Change and Transport System     Check     NO
@5B\QMaintained@     S_DATASET     Authorization for file access     Check     NO
@5B\QMaintained@     S_DEVELOP     ABAP Workbench     Check     NO
@5B\QMaintained@     S_DOKU_AUT     SE61 Documentation Maintenance Authorization     Check     NO
@5B\QMaintained@     S_GUI     Authorization for GUI activities     Check     NO
@5B\QMaintained@     S_PRO_AUTH     IMG: New authorizations for projects     Check     NO
@5B\QMaintained@     S_PROJECT     Project Management: Project authorization     Check     NO
@5B\QMaintained@     S_TABU_DIS     Table Maintenance (via standard tools such as SM30)     Check     NO
@5B\QMaintained@     S_TABU_RFC     Client Comparison and Copy: Data Export with RFC     Check     NO
@5B\QMaintained@     S_TCODE     Transaction Code Check at Transaction Start     Check     NO
@5B\QMaintained@     S_TRANSLAT     Translation environment authorization object     Check     NO
@5B\QMaintained@     S_TRANSPRT     Transport Organizer     Check     NO
It show So many Object and it standed object .and at last it show NO in Proposal Colom
Thanks
kallis

Restricting Customer Hierarchy Type for VDH1N

Greetings,
I am currently attempting to restrict the t-code VDH1N as there is a request to restrict the Customer Hierarchy Type within the transaction code. I have executed VDH1N and analyzed the ST01 trace results and found no authorization objects which relate to this field within the t-code.
SAP simply checks for the following objects the way the system is currently configured: S_TCODE (standard check), S_PROJECT, and V_KNA1_VKO. I then resorted to checking SU24 to see whether any of the objects relate to Customer Hierarchy Type and here is what I found (none seem to relate to this field):
S_ADMI_FCD     System Authorizations
S_DATASET     Authorization for file access
S_DEVELOP     ABAP Workbench
S_DOKU_AUT     SE61 Documentation Maintenance Authorization
S_GUI          Authorization for GUI activities
S_PRO_AUTH     IMG: New authorizations for projects
S_PROJECT     Project Management: Project authorization
S_RFC          Authorization Check for RFC Access
S_TCODE          Transaction Code Check at Transaction Start
S_TRANSLAT     Translation environment authorization object
V_KNA1_VKO     Customer: Authorization for Sales Organizations
I performed a search on this forum and there is no mention of t-code VDH1N either. Can anyone suggest any possibilities to restrict this field using standard authorization objects?
Thanks and Kind Regards.

Hi,
I quickly checked the code and it looks like there is no check for Customer Hierarchy Type. You need to go with custom object. There is a routine check_authority where all authorization checks for sales. org.,distr. channel and division are performed. It looks like a good spot to add custom authorization check. You can easily enhance it using one of twi implicit enhancement points: start and end of routine.
Cheers

Relationship between Authorisation objects and Tcode

Dear all, 
In 4.6C 
I go to Tcode SU01-> Tcode assignment->provide MB1A for tcode->F8-> value list, then I get the list of Authorization objects associated to this tcode.
Access to Tasks in General Notifications
Authorization for document activities
CS BOM Authorizations
Authorization for Class Types
Consolidation: Authorization for subgroup
PM: Task List
PM: Transaction Code
CO-CCA: Cost Center Planning
EC-PCA: Delete transaction data
EC-PCA: Actual Data Transfer
Warehouse Number / Storage Type
Transaction Codes in the Warehouse Management System
Document Type in Purchase Requisition
Purchasing Group in Purchase Requisition
Plant in Purchase Requisition
Purchasing Organization in Purchase Order
Evaluation Structure: Application
Material Master: Maintenance Statuses
Personnel Planning
HR: Reporting
HR: Master Data
HR: Master Data - Extended Check
HR: Master Data - Personnel Number Check
Use of Group Codes
Quality Notification Types
QM Transaction Authorization
Business Process Quality Notifications
System Authorizations
ALV Standard Layout
Background Processing: Background Administrator
Background Processing: Operations on Background Jobs
Administration Functions in the Change and Transport System
C Calls in ABAP Programs
Authorization for File Access
ABAP Workbench
SE61 Documentation Maintenance Authorization
Authorization for GUI activities
IMG: Authorization to Perform Functions in IMG
Language administration
SAPoffice: Authorization for an Activity with Documents
SAPoffice: Attribute of Office User
Authorization Object for Sending
OLE Calls from ABAP Programs
ABAP: Program run checks
IMG: New Authorizations for Projects
Authorization check for RFC access
Change documents
Spool: Device authorizations
Spool: Restriction on Maximum Number of Pages
Cross-client Table Maintenance
Table Maintenance (via standard tools such as SM30)
Authorization Check for Transaction Start
Transport Organizer
SAP ArchiveLink: Authorizations for access to documents
Sales Document: Authorization for Sales Document Types
Sales Document: Authorization for Sales Areas
This information is fetched from the table USOBX where name = MB1A and type = 'TR'
When I create a role in PFCG say ZTEST_ROLE and assign the only one tcode MB1A, I get additional authorisation objects below
CO-PC: Product Costing
Material Master: Company Codes
Material Master: Warehouse Numbers
Why do I get these additional objects ? What is the logic behind this?
My requirement is to check the authorisation objects associated to a Tcode.
Thankyou.

hi
there would be many authorisation objects for a tcode (like create,change display).....so if user is having that particular authorisation object only then he can do a particular activity in that tcode.
Regards
Sajid

Create HTML in Document Maintenance (SE61)

Hi there,
I am having difficulty trying to create URL link in my document using SE61. If i type "http://.....", it will display as hypertext url link in my document. But if i have a long url, the hypertext will not be correctly displayed, as the text will be broken up.
Anyone knows how to create a url link or create HTML tags using SE61 (Document Maintenance)? Thx
Zul

Hi Mohamed,
I think your question is not ITS related and the chances to get an answer in this forum are not high.
I don't know the answer to your question and would suggest that you consult the BC-Documentation in Knowledge Warehouse. If you want I can move this thread to another forum.
Best regards,
Henning

SAP Solution Manager - authorizations

Hello!
Is there any functionality in Solution Manager for
1. Adjust user rights per project
- example:
User1 has access in Project1 but no access to Project2 in same Solution Manager client
2. Adjust user rights per part of project structure
- example:
User1 has access in Business scenario1 of Project1 but no access to Business scenario2 of Project1
3. Adjust user rights per document belonging into project
- example:
User1 has access in Document1 of Process step1 of Project1 but no access to Document2 of Process step1 of Project1

Thanks for the tip!
What I was searching for was not in Change Request Management but more like Project Administration. It was found from the Solution Manager library help in Assign Authorization for Documents:
"You can control the access rights to documents in the project by assigning authorizations for groups of documents, e.g. you can specify that only the project management can change documentation templates. The system saves Solution Manager project documents in Knowledge Warehouse folders. Access to Knowledge Warehouse folders is controlled by the authorization object S_IWB, which is in the roles SAP_SOL_KW_ALL and SAP_SOL_KW_DIS, and in the Solution Manager Composite Rolles.
You have role (transaction PFCG) and user maintenance authorization..."
So, thanks for the guidance .

SE61 Documentation Maintenance Authorization

Similar Messages

Maybe you are looking for