What is Analysis Authorisations

Similar Messages

• Hierarchy Analysis Authorisation

  Hi All
  We are trying to limit the output of a HR Sickness report depending on the user's position in the Org Structure hierarchy. We can't use structural authorisation as its not maintained in ECC.
  We have the org struct in BI and we want to setup dynamic Analysis Authorisation (AA). So we want to create AA with hierarchy restriction on 0orgunit based on a variable. Then at runtime the variable is populated by ABAP with the user's org unit. The report then shows the data for the user's org unit (and all other org units below in the org structure).
  In RSECADMIN I can create a new authorisation object and add 0orgunit to it. On the Hierarchy Authorisations tab  I hit the create button and select orgeh hierarchy . Then I press the 'select variable' button and I get the error message 'No variable of type Customer/SAP exit for characteristic 0ORGUNIT exists'.
  What am I doing wrong? Where do I specify a variable for 0ORGUNIT so that it can be available in the selection screen?
  Thanx
  Asif

  https://wiki.sdn.sap.com/wiki/display/BI/AuthorizationinSAPNWBI
  http://www.sdn.sap.com/irj/scn/events?rid=/library/uuid/ded59342-0a01-0010-da92-f6b72d98f144&overridelayout=true
  Go through these links. Hope this would help you.

• BI analysis authorisations direct assign to user in RSECADMIN

  Hello,
  In RSECADMIN it is possible to directly assign the 'analysis authorisations' to user-id's
  It is also possible to assign the 'analysis authorisations'  to a role via the authorisation object S_RS_AUTH
  Can somebody tell me
  -    what are the pros and cons of directly assigning the analysis autorisations to the users in the RSECADMIN ?
  -    In which situation is direct assigning in RSECADMIN used ?
  -     IS dirtectly assigning to users in RSECADMIN in a production environment critical?
  -     what does SAP propose: directly assigning in analysis authorisations our via a role
  In our case we have the situation of
         BI system with a large number of analysis authorisations. The values of the analysis authorisations should be  
         maintainable in production environment.
         We have also to take in mind:
                            -  Roles are added to users via CUA ( RSECADMIN is not maintainable via CUA)
                            -  Business Objects is coming. So set up the authorisations that they can be used for Business Objects
                            -  Flexible ( new autorisation relevant info Objects)  should be easy adeptable.
         What we want to use is
                                   - assigning analysis authorisations via a single role ( in a composite ) to the user
                                   -  a variable in the analysis authorisations as field value  of a characteristic. In that case the values can be  
                                      assigned dynamically in production.
                                     the data access role has the link to the analysis autorisations in the RSECADMIN.
                                    this analysis authorisation contains variables instead of a fixed field value.
                                    The values of the variables are maintained in a table in a production environment
           Is using directly assigning analysis authorisations to users in the RSECADMIN in  the production environment an  alternative  ? 
      Thanks for your answers
      With Kind Regards,
      Vincent
  Edited by: Vincent Willems on Apr 7, 2011 10:37 AM

  Hello Vincent,
  My way of working is to follow the structure you have in the providing systems. If you have created a role for a production employee then try to translate the roles for the production analysis the same way in BI. You can use the s_rs_auth object. In HR you can use structural authorizations, you can use some programs to set the structural authorizations in BI and that will be done by creating an analysis object and add this to the user involved. Also updates from structural authorizations will be done automatically by these programs. I should not add your own objects to single users, that is a lot of maintenance you do not want. Use in BI the same concept as in the providing systems, it is more clear for anyone who has to work with it.
  Have fun
  Bye
  Jan van Roest
  PS. Did you solve your problem? If so please close your question
  Edited by: J. van Roest on Jul 7, 2011 12:51 PM

• Doubt in Analysis authorisations

  i have implemented analysis authorisations in BW 7.0 System
  After that when i login to the query using a user id where analsysis authorisation is implemented,
  I could not see the Report directly. I have to apply filter and then only i was able to view the report.
  My question is, when u implement analysis authorisations , you will be able to view the report direcly or you will be able to view the report only after applying filters

  > You need a authorization-variable in your filter for
  > the infoobject IO_DEPT.
  Be aware that there is no need to use authorization variables in SAP BI 7.0!!!
  This is one of the great GREAT advantadges of using analysis of authorizations.
  What you need is to define the adequate authorizations to access query/workbook and funcionality. Analysis authorizations does not relate with funcionality access, only with providers and data access.
  Q: "When ever u implement Analyis Auth, you will be able to see filtered data directly or you have to do that Filter changes and only view the data. "
  A: You only view the data, no need to filter. Once again, use the log from the analysis authorization to see the information the system provides.
  I defined the following technical objects in a
  separate "technical authorization":
  0TCAACTVT Activity in Analysis Authorizations
  0TCAIPROV Authorizations for InfoProvider
  0TCAKYFNM Key Figure in Analysis Authorizations
  0TCAVALID Validity of an Authorization
  Message was edited by:
          Miguel Costa

• Looking to Migrate to Analysis Authorisation from 3.x  Migration

  Hi Masters,
  we are migrating our system from Old Authoristaion to new Analysis Authorisation.
  Need some information like:-
  1) What should be checked as a part of Impact Anaylsis at the start.
  2) What will be the Impact on the existing Authorisation
  3) Whether We have to create new roles or the existing Role will work.
  Please respond quickly so that I can Start working on that.
  TIA.
  Regards,
  Amit Kumar Trivedi

  Hi,
  Have a look at below threads for similar query, hope it helps.
  Analysis Authorization - Problem with navigation attribute
  BI Authorizations : Regarding Analysis Authorization
  Analysis Authorization & its compaitbility with BW 3.5 Query
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/9000928e-dd3d-2e10-9ca1-a00f249305b7?QuickLink=index&overridelayout=true
  Regards,
  Mani

• ":" in analysis authorisation objects

  Hi,
  We made 0DEPARTMENT as authorisation relevant.
  In one of our Analysis Authorisation Objects(Rsecadmin) Settings for 0DETARTMENT IS = :
  What exactly ":" represents
  Thanks in advance

  Hi,
  The colon( value is used in BW to authorise display of aggregates. If you are using company code in the free characteristics and do not restrict on it to authorised values, you need to maintain : for it. Once you drill down on it (or equivalently put it in the rows) you need the actual values to be maintained in the authorisations as well.
  Have you investigated the use of authorisation variables? You can maintain the values 1000 and 3000 in the authorisation and restrict the characteristic with an authorisation variable. This will ensure that the query is run for only the authorised values. This will work irrespective of whether you use company code in the rows or free characteristics.
  Thanks,
  Venkat

• Regarding the analysis authorisations.

  Hi experts,
                       I was new to concept analysis authorisations .Actually i am creating the authorisations for the company code we are having 10 company code among that one for 1100 i am creating the authorisations for to restrict the data of the 1100 to an particular user .Using the analysis authorisations i created and passed the parameters 0tctactv ,....ect like this on which infoprovider,and on which company code i am making the restrictions to the particular user .when i am executing the particular user all the reports what ever it is having on the cube is comming but here i need to get the report based up on only the company code 1100 .but i dont need the data from the 1000,2000,like that for that user.can you tell me experts where exactly i am doing the mistake .if it is possible can you give me the screen shots for the analysis authorisations .
                                                     bye.

  Hi,
  Use following link to create role and auth object
  http://help.sap.com/saphelp_scm50/helpdata/EN/0c/515bb287fe41829556fb4227820e52/content.htm
  Regards
  Pramod

• BI7. Analysis Authorisations: 0TCA_DS01 to 0TCA_DS05

  Good day
  For those who have already implemented Analysis authorisations, PLEASE help?
  I am investigating analysis authorizations and also need to implement at our site.
  What I need to know is what objects are delivered with the template DSO's 0TCA_DS01 to 0TCA_DS05? Should they have any transformations, DTP's and datasources?
  I am a bit lost on how this should work. I have gone through numerous links and instructions, with no success at all. Seems as if this whole concept of analysis authorisation is escaping me.
  Please assist with any detailed information regarding the HOW TO, or STEP-BY-STEP instructions.
  Thanks in advance.
  Cj

  Hi Cornelius,
  you're right, there is no data flow available for those DSO objects. What dataflow would you expect? You want to upload the auth data via flat file? Or you want to load from another source system by an dedicated logic or perhaps with an workflow as a trigger? You see, it's not that simple to deliver "the one and only" dataflow. The mentioned objects are templates as the program to generate the analysis auth expects a special order of the fields which are given when you use the ODS objects..
  Read more here, http://help.sap.com/saphelp_nw70/helpdata/en/59/fd8b41b5b3b45fe10000000a1550b0/frameset.htm
  You have to create the dataflow by your own, regardless if you want to use 3.x dataflow or 7.0. The only thing you have to ensure is the correct order of the field in the DSO whit the values you want to use later in the generation.
  Hope that helps a bit.
  Best regards,
  Maik.

• How do i find out what devices are authorised on my apple ID?

  I have just bought a new iMac and want to get all my itunes library etc on it.  However, apparently i have reached my limit of 5 authorisations, which is entirely possible as I have had a number of iphones, Macair and ipads, some of which I either no longer own or are no longer functioning.  How do I find out what devices are authorised and then deauthorise any that I don't use any more - given that they may not even work!

  Welcome to the Apple Community.
  You can't de-authorise just the computers you no longer have access to.
  Your only option is to de-authorise all your computers and then re-authorise those you wish to be authorised. You can do this by logging into your account settings in iTunes on your computer (Store > View My ID) and selecting the option to de-authorise all.
  Please note however, you are only permitted to do this once in each 12 month period, therefore you would be better de-authorising your computers before you lose access to them. you can do this from the 'Store' menu in iTunes.

• Using the new EPMDriverBasedRefresh function for What-if Analysis

  Hi,
  A new function is available that supposedly enables easy what-if modelling in BPC. This sounds great because currently for what-if analysis, you need to duplicate data in the database (using differnet categories or data sources) which can be time consuming and impact overall performance.
  Has anyone got any experience with this EPMDriverBasedRefresh function? There is some documentation on SAP's userguide but there are no specifics on the type of logic that is supported for scenario outputs i.e. is it only Member Formula Logic (Account 1 x Account 2 = Account 3), or can it support more complex scenarios such as running through Default Logic (and any BAdIs you may have) to retrieve the modelled output? (This would be awesome!)
  32.20 has the detail in the userguide: https://help.sap.com/businessobject/product_guides/boeo10/en/EPMofc_10_user_en.pdf
  and it says:
  "This function enables you to refresh specific rows or columns of one or more reports, based on a specified range of data drivers whose values you can modify.
  Additionally, you can specify to refresh a whole report that is outside of the specified range of data drivers.
  This function can be used for example for what-if analysis."
  My testing has found that it does not run default logic (where our driver-based calculation BAdI is called).
  Any experience from fellow SDNers would be much apprecited! Otherwise I'll put a call into SAP to get the documentation expanded a little.
  Cheers,
  Nick    

  Hi Nick,
  It looks like this function only deal with the report refresh with multiple reports in one workbook...
  Not extremely useful. If I am wrong, please correct me.
  Vadim

• Hyperion Planning - What If Analysis

  Hi,
  I have a requirement to do what if analysis.  Althouh I know how to Exchange Rate functionality works in HP.
  Example - If I want to see the variation in COGS  USD by chaning the FX rate on-fly.

  I had checked that document , but i need some real time process. What is required, from where we need to start? What are the required components like pre-requisite?

• Handling Relationships in What-If Analysis Worksheets.

  Hi All,
  I am currently working on a rulebase in OPM v10.4 where we have used quite a few relationships and the final output for the rulebase rests on certain selections in these relationships.
  Global
  | ->The Company Employee
  |--------------> The Company Employee's Position
            (Relationships - the company employee is the manager of(Many to Many),
            the company employee is the team lead of(Many to Many),
            the company employee is the project manager of(Many to Many))
  I am testing the same using what-if analysis worksheets but i am facing some issues.
  1. I can't see any of these "*relatioships*" when I select "*Add Columns*" in the "*the company employee*" or "*The Company Employee's Position*" worksheets.
  2. When I select "*Add Worksheet*" and then check "*the company employee is the manager of*" or "*the company employee is the team lead of*" or "*the company employee is the project manager of*", I am able to add a new worksheet with these name but when I try to select "*Add Columns*" in any of these worksheets then I get an message which says "*All 'the company employee is the manager of' columns are already selected*". I get similar messages for all the relationship worksheets.
  I am not able to find a way to test my rulebase using the what-if analysis worksheets as I am not able input the "*Relationships*" that I have used in the rulebase anywhere in the What-If analysis worksheet(s).
  Any pointers on this will be of great help.
  Thanks
  Bijay Mishra
  Edited by: 993514 on Mar 13, 2013 2:38 AM
  Edited by: 993514 on Mar 13, 2013 2:39 AM
  Edited by: 993514 on Mar 13, 2013 10:52 PM
  Edited by: 993514 on Mar 14, 2013 4:42 AM

  Hi Frank,
  Thank you very much for the reply.
  In my rulebase all the relationships that I am using have the same "Source" and "Target". It is "the company employee". Right now I have removed the entity"the company employee's position" which was contained by "the company employee" just to make it simpler to explain.
  So all the relationships I am using under "the company employee" have the same "Source" and "Target",i.e. "the company employee".
  Here's the new structure(Nothing has changed wrt the relationships though):
  Global
  |------------>the company employee
  +(Relationships - the company employee is the manager of(Many to Many),+
  the company employee is the team lead of(Many to Many),
  the company employee is the project manager of(Many to Many))
  So when I am adding a worksheet for the relationship lets say "the company employee is the manager of(Many to Many)" I am getting one column "the company employee #". But as our "Target" and "Source" is the same we can't add a duplicate column "the company employee #". It throws a duplication error we do and rightly so.
  Even in the Oracle Policy Modeling User's Guide which I always refer to, the "Source Entity" and the "Target Entity" are different. Something which is not the same in my case.
  How to make it work in this case????
  Thanks Again Frank
  Looking forward to your response. It would of great help.
  Thanks
  Bijay Mishra
  Edited by: Bijay Mishra on Mar 15, 2013 12:00 AM
  Edited by: Bijay Mishra on Mar 15, 2013 4:10 AM

• Decision summaries in what-if analysis spreadsheets

  We are testing what-if analysis spreadsheets and we love it.
  We have an interesting puzzle. In one test, we have 100 source attributes and another 50 attributes derived from the rules.
  The rules execute and return monetary values. Everything works as advertised.
  However, we want to discover which source attributes were really the key factors in the decision as we look at the spreadsheet. Ideally, we would like to be able to produce 2 additional summary columns in Excel. One summary column would tell us that attributes A, C, and D increased the monetary amount. The other column would tell us that attributes B, E, and F decreased the monetary amount.
  At the moment, the only thing I can think of doing is some complex formulas / reports in Excel itself combined with OPA rules. This is less than ideal.
  I can put logic in OPA, but I am basically trying to recreate my own summary decision report and I still have the problem of concatenating text to create the summaries. I am not sure how to concatenate text into a running description. For instance, I can't put a rule that concatenates text: txtPositiveKeyFactor = txtPositiveKeyFactor & "The age column was a major positive factor", etc... ...or can I?
  Any thoughts?
  BTW, 2nd question: how do you put a carriage return / line feed into a text attribute in OPA?
  Edited by: Paul Fowler on Aug 3, 2012 6:21 AM

  To tell whether or not an attribute increased or decreased the overall value, you'll definitely need to create additional goal attributes for those things. E.g. attribute increased the outcome if...
  You could then have each of these as additional outcomes, and use Excel to create the concatenated text in an additional (non OPA-populated) column.
  As for your second question, I'm not sure that OPA actually supports CRLF in a text attribute - but I could be wrong.
  Davin

• What-if Analysis on Bom Component Quantity

  Hi ,
  Is it possible to do What-if analysis on Bom Component Quantity ? As Users wanted to do what if analysis for Gross Die per Wafer. We tried creating one measure for GDPW and use the if condition in BOM Custom Roll up for eg. if (isNull("GDPW"),Component_Qty,"GDPW") but it is not working for What-if Analysis. Do i need to change something in On-Change formulae in BOM Custom Roll up.
  Thanks
  Lokesh

  Hi ,
  We are able to load the GDPW for Die level (only one stage )and we have a condition to validate if the measure is null it will take the component_Quantity or else it will take the 1/GDPW measure value. we are doing it for 3 purposes :
  1. To get the Accurate value of GDPW which is equal to 1/Component_Quantity (GDPW will be accurate only if we get 30 decimal places value in calculation)
  2. As part of information provided to Users as they wanted to see it.
  3. To do What-if Analysis (if Possible).
  We could have use 'todouble' for the accuracy but we were thinking of what if analysis, and user visibility also.So far calculation is coming nicely but it would be appreciated if you can give pointers for the risk involved in keeping GDPW as measure.
  Thanks
  Lokesh
  Edited by: Lokesh Rathi on Sep 21, 2011 6:38 AM

• BI7 Analysis Authorisations - relationship between value & hierarchy auths

  Hi all
  Does anybody know how we can set up the new analysis authorisations to allow a user to use a Query selection for cost centre based upon a hierarchy and yet restrict the cost centre data they can display by value authorisations?

  SDN is the place to discuss technical problems..
  Please avoid such weird post.
  G@urav.