Hi,
Our requirement was to restrict modification of Work orders by specific users. For that we assigned particular Planner Group/Plant to users.
The field INGRP for following combination [TCD, IWERK, INGRP] was restricted for a specific user.
Issue:
Notification was created on object Equipment (the Equipment master data have Planner Group 061). But the Planner Group was changed to 021 on Notification. Now Order was created based on this Notification with Planner Group 021.
When user who is assigned Planner Group 021 tries to open the Order, it says no Authorization on Planner Group 061.
What went wrong and how to overcome this issue?
Regards
Faisal
Faisal khan,
Just for information about Authorization way of controlling things. When we expect and aim at more IFs through Roles and AuthObjects, very often we find similar issues being experienced by you. Here comes the use of user-exits (or BAdi) where our requirements can be customized to any extent. In the present case you can make use of user-exit IWO10009 in combination with a ztable. The ztable wil have user name, planner group and plant.
Hi Faisal,
One suggestion, instead of planner group, you may want to try with I_KOSTL OR I_BEGRP.
Also check & explore following objects if they fulfill you requirement.
I_VORG_ORD
I_VORG_MEL
Regards,
Amol
Hi Faisal,
I have done similar requirement to make sure the order is restricted through Planner group
Below is setup, i have done
Check whether the user is having any other role, which restricts 061 by some way. Try to take SU53 and pass in SUIM to determine whether this is the same role is gives
Regards
Terence
Add a comment