on 03-15-2017 6:41 AM
we require now a certain amount of intercompany sales activity and are having a problem to allow some transactions in another Sales Area.
For example we would like a user who has sales role X_SD_02_VKORG_1510_12_ORDERS containing the main sales transaction (VA01 VA02 etc.) to be able to create quotations for Sales Areas 1400 1300 etc.
Creating a test role X_SD_99_VKORG_1XXX_QUOTATION with VA21, VA22 and VA23 (quotation trx) when we add this to the 1510 user we find that the user can change orders in the other companies.
-------
Standard Sales Document: Authorization for Sales Document Types V_VBAK_AAT
Activity 01, 02, 03, 05, 06, 24, 25, 43 ACTVT
Sales Document Type ZQT, ZQTB AUART
Standard Sales Document: Authorization for Sales Areas V_VBAK_VKO
Activity 01, 02, 03, 06, 24, 25 ACTVT
Division 10, 11, 12, 20 SPART
Sales Organization 1100, 1200, 1300, 1340, 1400 VKORG
Distribution Channel * VTWEG
-------
This seems to be because the objects V_VBAK_AAT & V_VBAK_VKO are the main controlling objects for all of the VAxx transactions.
Another example of our requirement is to allow a user with the main sales role in a particular Sales Area to create a Scheduling Agreement (VA31) in another Sales area.
The only solution we can think of at the moment is to create our own authorization object (something like a combination of V_VBAK_AAT and V_VBAK_VKO) and use this in user exits, this would be a time consuming process and we are not sure that this is the correct approach to take.
Is there a simpler way to allow a user in one Sales area to have a limited number of transactions in another sales area?
Hello Rupesh,
we are talking about one user. The roles have already been created and tested before the question was asked. It seems it is not possible to give VA01 and VA02 in one Sales Org. (1510) and VA21 in other sales organisations(1100 1200 etc.), because it allow the user to create or change orders in all Sales Orgs.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You Can Create PFCG role as per Your Requirement,
One Role for V_VBAK_AAT-ZQT,ZQTB and V_VBAK_VKO-1100/10/10
Another Role For V_VBAK_AAT-ZQT,ZQTB and V_VBAK_VKO-1200/10/10
Or In Combination Another Role For V_VBAK_AAT-ZQT,ZQTB and V_VBAK_VKO-1200 and 1300,1400 /10/10
As per Business Requirement you can assign this roles to respective user as you are going one role to all. If we go Respective Role to Respective user then we have this option
Rupesh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thanks for your reply if you find anything please llet me know
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I believe you are correct. We ran into the same issue before: wanted to give access to a combination of SOrg / document type but because these are in two different objects it also allows the unwanted combinations.
Unless you find some other objects using Security trace or an alternative solution in the SAP notes, a custom object may be needed. I don't recall us doing that but maybe we just handled it using Firefighter access. I'll try to dig up more information on this but it'll take a few days.
Edit: by the way, you might want to change the question title. "Intercompany sales" is something completely different in SD and this question is about authorization check, not about sales process.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
103 | |
12 | |
11 | |
6 | |
5 | |
4 | |
3 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.