on 06-15-2015 10:33 AM
Dear Experts,
I am stuck with Navigational attribute authorization.
I have created a custom master Info object ZSPOKE.
Now this has 2 navigational attribute ZZONE and ZHUB.
I have checked all the authorization related settings but still this not working.
ZONE HUB SPOKE
Delhi Delhi Delhi
Delhi Delhi Mayapuri
Delhi Gurgaon Faridabad
Delhi Gurgaon Ghaziabad
Delhi Jaipur Bhilwara
Delhi Jaipur Kota
The above mentioned is the example of the Zone - Hub - Spoke levels.
I need to authorize user based on HUB or Spoke or even on Zone level.
Please advice.
Thanks,
Sanjana.
Hi,
Kindly suggest.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
I have tried the same in many different ways,But no success.
When I add SAP_ALL profile , then only report is showing data. All data is appearing.
Please advice.
Thanks,
Sanjana.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Amit,
I have created a test user USER1. I have not assigned profile SAP_ALL.
I have checked the report after assigning 0BI_ALL , this time report is appearing will all the SPOKE , ZONE and HUB without any issue.
Now I simply copied copied the 0BI_ALL to another object ZBI_ALL. This time also ran the report successfully.
With ZBI_ALL , I maintained the value for SPOKE e.g Delhi , Again I have received No authorization. I don't know , what is happening .
Please suggest.
Thanks,
Sanjana.
Hi Sanjana,
Can you please clarify regarding whether any error message is occurring while doing this
which I asked in my previous reply here.
Also, can you please refer the following SAP KBA Note and check whether it helps you:
1953967 - BW Analysis Authorization for Navigation Attribute in Query Based on InfoSet
Thanks & Regards
Sapna
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sanjana,
Can you please clarify regarding what did you mean by mentioning 'no authorization' here as it is not clear.
Can you please clarify regarding whether there is any error message occurring relevant to
authorization when running the query.
Also, can you please refer the following SAP KBA Note (which I mentioned in my previous reply here) and check whether it helps you:
1953967 - BW Analysis Authorization for Navigation Attribute in Query Based on InfoSet
Thanks & Regards
Sapna
Hi Sanjana,
You can check the below note and also the reply which I posted above which will help you for your issue to find out where authorization is missing.
1904962 - How to Analyze a "No Authorization" or Showing Too Much Data Issue
with BW Analysis Authorization
"1951019 - Navigation Attribute and Display Attribute for BW Analysis Authorization
Also you can check below SCN document to check what authorizations are assigned to the user.
Following which you can adjust your authorization.
http://scn.sap.com/docs/DOC-59028
Regards,
Amit
Hi Amit,
I have checke the link provided by you, http://scn.sap.com/docs/DOC-59028
But at final , I found
List Is Empty:
There Are No Characteristics That Have to Be Checked in Detail
That means Its is not checking the authorization objects while running the query.
But I have made all the settings perfectly.
Please advice.
Thanks,
Sanjana
Hi Sanjana,
With regard to message "There Are No Characteristics That Have to Be Checked in Detail", can you please check the following:
"Can you please clarify regarding whether your user have authorization? If yes, they will be
removed from the list and then do not need to be checked."
Can you please refer the following SAP KBA Notes and check whether it helps you:
1736473 - Usage of authorization variables results in "no authorization" when multi-dimensional auths are assigned
2029766 - Authorization variables are not filled correctly when executing query-views
Thanks & Regards,
Sapna
Hi Sanjana,
This is the setting you made only for authorization relevant of info object.
Also you need to do following steps :
1. Create Analysis authorization object.
2. Create the role and use this query here and use this Analysis authorization object. And user also there. Also depends on how you creating the role single or composite?
3. In query create one mandatory variable on ZSPOKE also.
Also you can search the docs for detail. Out of them one is below :
Regards,
Abdullah
Hi Abdullah,
I have made the setting for authorization relevant object. Along with this I also have created the Analysis authorization Object ( through t-code RSECADMIN ) , role.
But I don't understand creation of mandatory variable on ZSPOKE.
Note : ZSPOKE is the main info-object. ZHUB and ZZONE are the two navigational attribute. I have made the setting for authorization relevant object for all the 3 info objects ( means ZSpoke , ZHub and ZZone ). Is this right ??
Please advice.
Thanks,
Sanjana.
Hi Sanjana,
Here I want to correct one point is variable can be optional but it should be Process as 'Authorization'.
It is for allowing the user to give the values. If user entered correctly then it will show the report otherwise will give the error of authorization. It means that user is not authorized for values entered.
Please have a look this below doc :
http://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/c0b7acf2-6121-2e10-5591-eaec182d9315?overridelayout=true&50452981137364
Regards,
Abdullah
Hi Sanjana,
if you made all 3 objects as authorization relevant,
you need to include all3 of them into one analysis authoriation object.
Which values did you maintain there?
Did you include the correect cube or multi provider into this analysis auth object?
in the query definition it depends a bit on the given auth values, whether you need variables or not.
usually it makes sense to use the variables, but if an object is not used in the query and you gave the : auth, you don´t need the variable.
Also for users with * auth you don´t need the variables.
could you simplify your problem, create a very easy query that inlcudes only the three objetcs and one key figure
then make a fixed selection for values which are included in the auth object
then check that this query rund correctly.
If this is the case, you know that the auth object and everythin around is created correctly.
afterwards you can create more complicated queries and then figure out which auth values need to be given.
regards
Cornelia
Hi Sanjana,
As you are having some issue in correctly setting authorizations for navigational attribute.
You should check below SAP note which can help you on your issue.
1951019 - Navigation Attribute and Display Attribute for BW Analysis Authorization
Also you can check below SCN document to check what authorizations are assigned to the user.
Following which you can adjust your authorization.
http://scn.sap.com/docs/DOC-59028
Regards,
Amit
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sanjana,
Just check out have you assigned AA object to correct role & run the user comparison?
Regards,
Abdullah
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sanjana,
Can you please clarify regarding whether any error message is occurring while doing this.
Thanks & Regards
Sapna
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
85 | |
10 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.