cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Restrict Access Request reports

Go to solution
Former Member

on ‎01-08-2015 8:50 AM

0 Kudos

Hi all.

I would like to know if it is possible to restrict the access to the information that the users can view through Authorization Objects to the Access Request report under menu Report and Analitycs.

Kind regards and thank you.

Sara.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎01-08-2015 2:40 PM
0 Kudos

This message was moderated.

Show replies
Show replies
madhusap
Active Contributor
‎01-08-2015 3:31 PM
0 Kudos

Hi Sara,

Authorization to access reports dashboard can be controlled using below authorization objects with display access.

GRAC_SYS and GRAC_REQ authorization objects

Earlier this report was checking objects GRAC_SYS and GRAC_REQ with ACTVT 01 for displaying the reports which we recently raised to SAP and got it fixed through below SAP note

2113085 - UAM: Incorrect authorization activity check for access request and provisioning reports

Regards,

Madhu.

former_member185447
Active Contributor
‎01-09-2015 1:46 AM
0 Kudos

Hello Madhu and Sara,

First of all I thank both of you for all the questions and answers that you are contributing in the grc space which is helping us a lot.

I have a doubt here.

As madhu has mentioned the following:

Authorization to access reports dashboard can be controlled using below authorization objects with display access. GRAC_SYS and GRAC_REQ authorization objects

when I went through the objects through SU21, I found the following information

GRAC_SYS : Auth. Object for SOD System and

GRAC_REQ : Auth. Object for CUP Access Request

When I saw this information, I couldn't relate these Auth.objects to reports in dashboard.

Is there any way where I can find the purpose of Authorization object and where it is used to restrict what?

Regards,

Deepak M

madhusap
Active Contributor
‎01-09-2015 3:05 AM
0 Kudos

Hi Deepak,

Best approach whenever you need to identify the authorization objects related to certain access is to enable trace and check what objects are being called and based on that you can determine the objects and values required.

Regards,

Madhu.

Former Member
‎01-09-2015 8:12 AM
0 Kudos

Hi all.

I have check these two authorization objects and i maybe i am wrong but i was not able to see some fields where i could restrict the access to the information contained into the Access Reports.

Let me try to be more clear with the requirement:

Some users want to have access to see Access Request reporting with the following information:

- Check requests for specific Company

- Check who created the request, who approved it in the different levels

- Check the status, etc...

The point is i don't want users from company A have access to see requests from users from company B and i was wondering if i could be able to restrict the access to the reports and/or dashboards through the Authorization Objects.

Kind regards and thank you.

Sara.

Answers (0)

Ask a Question