BPS You have no authorization for the requested da...

Former Member · ‎04-16-2007

We are implementing Hierarchy node based security for our BPS.

When the user tries to display the planning layout, they get the error message "You have no authorization for the requested data "

I have given authorization to the relavant Infocubes, also checked the all the Authorization Relavant Info Objects and added theses Info Object to the custom authorization created in RSECADMIN.

Also added the info objects 0TCAACTVT, 0TCAIPROV, 0TCAVALID to the custom authorization.

In pfcg, this authorization has been added to S_RS_AUTH. I have also given activity 02, 03, 16 values and a * to planning areas, functions, packages, groups, levels, folders, ... to the objects R_AREA

R_BUNDLE

R_METHOD

R_PACKAGE

R_PARAM

R_PLEVEL

R_PM_NAME

R_PROFILE

But still we get the same error.

Has anyone encountered this problem? Can you please provide me some clues to resolve this issue

Former Member · ‎04-16-2007

Hi, tru why the objects of the following template:

S_RS_PL_PLANMOD_D BI Role: Planning Modeler (Development System)

hope it helps

Former Member · ‎04-16-2007

Thank you very much Grevaz, but that template does not help.

I did run both ST01 trace and BI RSECADMIN trace. RSECADMIN Trace shows the below authorization failure

Subselection (Technical SUBNR) 1

Supplementation of Selection for Aggregated Characteristics

No Check for Aggregation Authorization Required

Following Set Is Checked Comparison with Following Authorized Set Result Remaining Quantity

Characteristic Contents

0FUNDS_CTR

0TCAACTVT

SQL Format:

FUNDS_CTR BETWEEN '4012001000'

AND '4012001999'

AND TCAACTVT = '03'

Characteristic Contents

0FUNDS_CTR Node 1 I EQ #

I EQ :

0TCAACTVT I EQ 02

I EQ 03

Partially Authorized (Average) Characteristic Contents

0FUNDS_CTR

0TCAACTVT

SQL Format:

FUNDS_CTR > '4012001000'

AND FUNDS_CTR <= '4012001999'

AND NOT FUNDS_CTR IN ('4012001001','4012001002','4012001003','4012001004','4012001005','4012001006','4012001007','4012001008','4012001009','4012001010')

AND TCAACTVT = '03'

Value selection partially authorized. Check of remainder at end

Following Set Is Checked Comparison with Following Authorized Set Result Remaining Quantity

Characteristic Contents

0FUNDS_CTR

0TCAACTVT

SQL Format:

FUNDS_CTR > '4012001000'

AND FUNDS_CTR <= '4012001999'

AND NOT FUNDS_CTR IN ('4012001001','4012001002','4012001003','4012001004','4012001005','4012001006','4012001007','4012001008','4012001009','4012001010')

AND TCAACTVT = '03'

Characteristic Contents

0FUNDS_CTR Node 1 I EQ #

I EQ :

0TCAACTVT I EQ 02

I EQ 03

Not Authorized

All Authorizations Tested

Message EYE007: You do not have sufficient authorization

No Sufficient Authorization for This Subselection (SUBNR)

Following CHANMIDs Are Affected:

206 ( 0FUNDS_CTR )

Authorization Check Complete

We have created custom authorization and trying to restrict based on hierarchy node.

One point I observed is, when I give access to all nodes with a wildcard * in the custom authorization, then the error disappears and the layout is visble. But our point here is to try to restrict based on the nodes and we cannot give display access to all nodes.

former_member93896 · ‎06-07-2007

Hello Jayaroop,

there's a rule: You can not authorize an interval by using a list of single values (or a hierarchy node of single values).

Understand Difference Between Sets of Single Values and Intervals

Single values: A, B, C vs. Interval: [A – C]

Single values do not authorize intervals

Reason: Interval also contains values Aaaa, B01 etc.

Either you add the interval to the authorizaiton or you add the interval to the hierarchy node.

Regards,

Marc

SAP NetWeaver RIG

Former Member · ‎06-08-2007

Hi Marc,

I never assigned set of single values. I just gave access to only one node in the hierarchy. And I never understood why I was getting this error.

BPS You have no authorization for the requested data