cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Hierarchy into BW - Help pls

Go to solution
former_member197527
Active Participant

on ‎11-28-2013 3:16 PM

0 Kudos

Hi friends,

Client created 3 hierarchies and can see in VDH1 for customer hierarchy.

Seems like we need to get these into BW and use them for authorizations.

Tried searching SCN and could find 0cust_sales to be used. Also the datasource 0CUST_SALES_LKDH_HIER as its time dependent.

But am not clear of how can I use these in authorizations. Am new to BW.

Please guide me in this.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

MGrob
Active Contributor
‎12-16-2013 9:00 AM
0 Kudos

Hi



How can I define authorizations based on these at node level for reporting?

- First of all 0cust_sales must be authorization relevant..

- Then goto tx RSECADMIN create a new analysis object add 0cust_sales as char.

- Click on 0cust_sales then under details "hierarchy authroization" assign one of the nodes of the hierarchy you need to authorize.

- Repeat that and create as many analysis objects as you need for all the levels you need to authorize.

- Then assign the analysis objects to indivdual roles and the roles to the user or assign the object directly.

hope that clarifies

Martin

Show replies
Show replies
former_member197527
Active Participant
‎12-17-2013 3:12 AM
0 Kudos

Hi Martin,

Thanks for these inputs. There are 2 hierarchies. And am loading them to same infoobject which is a template of 0cust_sales.

ROOT                                    - Node 1

- 00/DR01/02564                     - Node 2  (Level 1)

  - 00/DR01/02566                   - Node 3  (Level 2)

     - 00/DR02/02570                - Node 4  (Level 3)

     - 00/DR02/02572

       - 00/DR02/02580               - Node 5  (Level 4)

  - 00/FG01/02568                    - Node 6 (Level 2)

     - 00/FG02/02574                 - Node 7 (Level 3)

-----------------------------------------------------------------

  There are further more such groups at corresponding levels.

Say the users need access only after the Level 3. Will it be one object with type of auth "1" and selected node 4? Can there be more node selections in single object?

For each level, is it a new object of auth or how? Please help me understand

Client needs such restriction in queries. Is it that we drag and drop the custom info object which has both hierarchies loaded into the query and nothing else?

MGrob
Active Contributor
‎12-18-2013 6:10 AM
0 Kudos

Hi



There are further more such groups at corresponding levels.


Say the users need access only after the Level 3. Will it be one object with type of auth "1" and selected node 4? Can there be more node selections in single object?

Yes that would work and you can select more than one node to the analysis object.



For each level, is it a new object of auth or how? Please help me understand

each level you want to authorize you have to create an object for.



Client needs such restriction in queries. Is it that we drag and drop the custom info object which has both hierarchies loaded into the query and nothing else?

you can create an authorization hierarchy variable and the user will only see the levels he has been granted through the analysis object.

hope that helps

Martin

former_member197527
Active Participant
‎12-19-2013 7:00 AM
0 Kudos

Thanks Martin.

This is what I see in maintenance of HIER for plant A.

We have similar HIER for other plant B.

ROOT                                                                              - Node 1

-> 00/DR01/02564                                           - Node 2  (Level 1)

    -> 00/DR01/02566                                                         - Node 3  (Level 2)

        -> 00/DR02/02570  (UK)                                                     - Node 4  (Level 3)

             -> 00/DR02/02580

             -> 00/DR02/02581

        -> 00/DR02/02572  (US)                                                     - Node 7 (Level 3)

             -> 00/DR02/02582

             -> 00/DR02/02583

Here is how I want to proceed forward with the constraints I have:

Create 2 roles for Level 1 and Level 2 with node below sub tree for each of these 2 HIER, which means total 4 roles.

Have some confusion for Level 3 though. Since user needs to see ONLY US and the others ONLY UK,

do I need to create separate roles of these? How about the other plant B which has similar Level 3 US and UK, but with different customer no instead of 02570 and 02572?

MGrob
Active Contributor
‎12-24-2013 12:20 PM
0 Kudos

HI

Yeah you need an object for each level you want to authorize seperately.. means for the two different US and the different UK.

hope that clarifies

Martin

former_member197527
Active Participant
‎12-25-2013 2:49 AM
0 Kudos

Martin,

Apologies to ask again but this is very important for me. Hence asking in such a detail.

Both the HIER of plant A and B loaded to ZHIEROB.

Is it like -

ROOT                                                                       - Node 1

-> 00/DR01/02564                                    - Node 2  (Level 1)

    -> 00/DR01/02566                                               - Node 3  (Level 2)

        -> 00/DR02/02570  (UK)                                 - Node 4  (Level 3)

             -> 00/DR02/02580

             -> 00/DR02/02581

        -> 00/DR02/02572  (US)                                - Node 7 (Level 3)

             -> 00/DR02/02582

             -> 00/DR02/02583

For above Plant A HIER, need to create 4 roles as below FOR EACH NODE and NOT LEVEL as such?

  • Role 1 -> Level 1, Node 2 (Analysis object 1 which has ZHIEROB + 3 Special Char of 0TCT*)
  • Role 2 -> Level 2, Node 3 (Analysis object 2 which has ZHIEROB + 3 Special Char of 0TCT*)
  • Role 3 -> Level 3, Node 4 (UK) (Analysis object 3 which has ZHIEROB + 3 Special Char of 0TCT*)
  • Role 4 -> Level 3, Node 7 (US) (Analysis object 4 which has ZHIEROB + 3 Special Char of 0TCT*)

Again need to create similarly for Plant B HIER with same infoobject as both HIER loaded to it.

Please confirm once

MGrob
Active Contributor
‎12-25-2013 1:31 PM
0 Kudos

hi

correct but you only need role 1 and 2 if you want to authorize the higher levels otherwise you only need 3&4 for plant A hier and plant B hier

former_member197527
Active Participant
‎12-29-2013 8:10 AM
0 Kudos

Hi Martin,

Didn't get it. If I give only 3 & 4 roles, how about the users mapped to Node 2 and Node 3 (First 2 higher levels)?

Am little confused. Can you please be more specific?

Requirement specified -> Users assigned to specific node need to see everything below that node.

Former Member
‎12-30-2013 8:03 AM
0 Kudos

This message was moderated.

former_member197527
Active Participant
‎01-08-2014 5:06 PM
0 Kudos

Hi Martin,

Please suggest on below as its interlinked:

MGrob
Active Contributor
‎01-08-2014 9:20 PM
0 Kudos

Oh if you also need to authorize the node level 2 and 3 then you need all four roles.

Answers (5)

Answers (5)

Former Member
‎12-16-2013 6:18 AM
0 Kudos

Hi Aditya,

Let's first deal with bringing data to BW and then I'll give a simple solution for creating authorizations for your hierarchy.

For loading data to BW 7.3, you still can use 3.x flow. It is not mandatory. However, you can migrate this flow.

Br, H

Show replies
Show replies
former_member197527
Active Participant
‎12-17-2013 3:23 AM
0 Kudos

Hi Harish,

Created a new infoobject based on 0cust_sales and copied the transfer rules of BI Content and modified accordingly. Now loaded both hierarchies in this object in 3 x flow.  Ref table was KNVH, hence used 0CUST_SALES_LKDH_HIER datasource.

Please look at my latest reply to Martin. Kindly assist.

Former Member
‎12-17-2013 6:44 AM
0 Kudos

Hi Aditya,

Either you can follow Martin's approach,  but the downside is that you need to create multiple authorizations for new node entries.

One altrernative would be to write an abap program to update a table (this table contains users with authorized nodes and sub-trees and can be maintained manually also) for hierarchies for each user and read this table in the customer exit for variable created for 0cust_sales in your report.

This approach is easy to implement if you have abap background.

Br, H

former_member197527
Active Participant
‎12-18-2013 3:16 AM
0 Kudos

Hi Harish,

Being hard to understand. Can you please provide more info.

Please look at the below:

ROOT                                    - Node 1

- 00/DR01/02564                     - Node 2  (Level 1)

  - 00/DR01/02566                   - Node 3  (Level 2)

     - 00/DR02/02570                - Node 4  (Level 3)

     - 00/DR02/02572

       - 00/DR02/02580               - Node 5  (Level 4)

  - 00/FG01/02568                    - Node 6 (Level 2)

     - 00/FG02/02574                 - Node 7 (Level 3)

-----------------------------------------------------------------

  There are further more such groups at corresponding levels.

Say the users need access only after the Level 3. Will it be one object with type of auth "1" and selected node 4? Can there be more node selections in single object?

For each level, is it a new object of auth or how? Please help me understand

Client needs such restriction in queries. Is it that we drag and drop the custom info object which has both hierarchies loaded into the query and nothing else?

Former Member
‎12-18-2013 6:37 AM
0 Kudos

If you have maintained these authorizations in a table, you can easily provide authorizations based on it.

For eg.

UserLevel 1Level 2Level 3Level 4
User 1ROOT00/DR01/0256400/DR01/02566                  *
User 2ROOT00/DR01/02564**
User 3ROOT***

Now, User 1 is authorized to see only data of level 3 (00/DR01/02566) and everything below. Likewise, User 3 is authorized to see all levels below ROOT.

In this fasion, you can maintain authorizations for users based on this table. In your report, you need to create a customer exit variable for this infoobject and read this table in your exit to determine what authorization the user is assigned to, based on sy-uname.

If you follow this approach, you don't need to create multiple authorizations and assign to users. You simply need to maintain this table periodically to enable authorizations for users.

Br, H

former_member197527
Active Participant
‎12-25-2013 2:57 AM
0 Kudos

This message was moderated.

former_member197527
Active Participant
‎12-26-2013 3:05 AM
0 Kudos

Hi Harish,

Please look at the below one I requested. Request your help in this aspect:

Former Member
‎12-26-2013 9:50 AM
0 Kudos

Replied in your other thread.

Br. H

former_member197527
Active Participant
‎12-16-2013 2:40 AM
0 Kudos

Hi,

Am still stuck below:

When I try to migrate the datasource, it says not supported with some PSA error.

Is it mandatory to load in 3x flow? Am on BW 7.3

Can I load the same to a custom infoobject so that no dependency on 0cust_sales? Create a new one as a template based on 0cust_sales?

How can I define authorizations based on these at node level for reporting? Please explain with some example. The SDN doc was incomplete as it only gave some screens but not the explanation required.

Show replies
Show replies
Former Member
‎12-02-2013 10:32 PM
0 Kudos

Hi Aditya

After your replicate your data sources [cust_sales] from ECC, create Info package, pick the hierarchy you need in the hierarchy selection tab, run the info package

regards

Raj

Show replies
Show replies
former_member197527
Active Participant
‎12-08-2013 2:25 AM
0 Kudos

Hi Rajeev,

Am able to see 3 hierarchies in the infopackage for 0cust_sales.

Should this be done only in 3.5 flow? Any doc as such please?

Can I load the same to a custom infoboject so that no dependency on 0cust_sales?

How can I define authorizations based on these at node level? Seen the web but no clear doc on hierarchy authorizations

Please guide

Former Member
‎12-09-2013 4:43 AM
0 Kudos

This message was moderated.

former_member188080
Active Contributor
‎12-02-2013 12:11 PM
0 Kudos

Hi,

not sure what authorisaton you are using.

You can make Infoobject authorisation relevant. also you have to define necessary authorisation for the nodes etc.

In the variable also you can have authorisation variables by which only those authorised values will be displayed.

Thanks and regards

Kiran


Show replies
Show replies
former_member197527
Active Participant
‎12-16-2013 2:42 AM
0 Kudos

Hi Kiran,

Can you please be more specific? Am new to this concept and am finding this hard.

Can I load the HIER to a custom infoobject so that no dependency on 0cust_sales? Create a new one as a template based on 0cust_sales?

How can I define authorizations based on these at node level for reporting? Please explain with some example. The SDN doc was incomplete as it only gave some screens but not the explanation required.

former_member197527
Active Participant
‎11-29-2013 3:03 AM
0 Kudos

Please help in this regard

Show replies
Show replies
Former Member
‎11-29-2013 3:45 AM
0 Kudos

Hi Aditya,

Are you able to extract this hierarchy in BW? First check if you are able to see this hierarchy name when you check for available hierarchies in OLTP system in your info-package.

If you are not able to find it let me kw.

Regarding authorization please check below link.

http://help.sap.com/saphelp_nw04/helpdata/en/8f/57f438114ee836e10000000a114084/content.htm

Regards

Shabnam

former_member197527
Active Participant
‎12-02-2013 2:12 AM
0 Kudos

Hi Shabnam,

Am not clear about this. Client has 3 hierarchies in VDH1 in source.

I was told to extract them into BW and use them in authorizations.

Have gone through some docs but seems like they had some standard steps but not how to deal such scenarios step by step.

Please give over view if possible of how can I proceed

Former Member
‎12-02-2013 2:40 AM
0 Kudos

Hi Aditya

As Shabnam said,first check whether you got the  3 hierarchies from source system into SAP BW.

You can check the available Hierarchies, in your Info Package

Untill and unless you can see, you cant work on Authorisations

regards

Raj

Former Member
‎12-02-2013 3:22 AM
0 Kudos

You can replicated standard hierarchy of cust_sales in BW and create infopackage for it.

In hierarchy tab you will find option to check available hierarchies in source system.

I am not able to upload image check attachment for infopackage selection.

Regards

Shabnam

Ask a Question