cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

BI Authorization implementation

sureshmandalapu6
Active Contributor

on ‎08-19-2013 12:30 PM

0 Kudos

Hi Experts,

We are on BI 7.0 and BO 4.0 , we are implementing authorizations in our BI system. We make authorization for below objects.

Company Code

Plan

Sales Group

Sales District

We have created roles and assigned one role a one user for testing, but ! as per the role, the user is not restricted the data. He is getting all the data irrespective above objects.

Is there anything we missed out ?, i check the user doesn't have other profiles other than the one role.

i think there is something, please any tips ? Let me have if any good documents, i searched for documents and couldn't find proper document for complete cycle.

Regards,

Suresh

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (4)

Answers (4)

Prabhith
Active Contributor
‎08-20-2013 7:11 AM
0 Kudos

Hi ,

Please follow the steps below:

1) First make all the required info-objects as Authorisation relevant.
Ensure that the corresponding attributes are also marked as authorisation relavant.
EX: 0ACCNT_ASGN and 0MAT_SALES__0ACCNT_ASGN

2) Check the fields in the DSO 0TCA_DS01 and prepare a Flat file and do the loading.
This would be useful for mass maintenance.

3) Go to RSECADMIN and do a generation by by giving 0TCA_DS01 in Flat Authorisation
Spece.

4) Now the required authorisation objects would be created by system.
Ex: ZAA_1000_V1(see screenshot)

5) Ask the basis to create a role R1 with Authoriastion object S_RS_AUTH and
add the corresponding auithorisation object(ZAA_1000_V1) created in step4.

6) Add the role R1 to a userU1.This is what needs to be done at BW side.

7) Import the roleR1 and userU1 created in step 5 and 6 to BO(using CMC).

😎 Create a connection with the userU1 created in step6 and create the webi report.


Hope this clarifies......

Br

Prabhith

Show replies
Show replies
Former Member
‎08-19-2013 1:03 PM
0 Kudos

Hi Suresh,

Are you checking data in BW or BO, if BO have you checked which type of OLAP connection you have created. It should not pre defined authentication. either use SSO or prompt. Then it should work.

Test user will see only desired data.

Regards

Shabnam

Show replies
Show replies
Former Member
‎08-19-2013 12:57 PM
0 Kudos

Hi,

we need to assign the data for those objects in the process maintainance of objects by RSEADMIN tcode.

Thanks,

Ram

Show replies
Show replies
MGrob
Active Contributor
‎08-19-2013 12:43 PM
0 Kudos

Hi

Did you check the infoobjects to be "Authorization relevant"?

here is a good link to give you an overview of how it works.

http://wiki.sdn.sap.com/wiki/display/BI/Authorization+in+SAP+NW+BI

hope it helps

Martin

Show replies
Show replies
Former Member
‎08-19-2013 12:51 PM
0 Kudos

Hi Suresh,


can you explain scenario to your Basis team and also ask then to trace the access while you are doing same activity and see why they are getting access to more data.

Regards,

Ganesh

Ask a Question