Skip to Content
0

Parameter ID KS7 & KS8 in SU01

Sep 27, 2017 at 10:42 AM

67

avatar image

Dear Experts,

My Question is similar to the following Forums -

https://archive.sap.com/discussions/thread/1224866

https://archive.sap.com/discussions/thread/785409

https://archive.sap.com/discussions/thread/424101

https://archive.sap.com/discussions/thread/1064997

https://archive.sap.com/discussions/thread/1589319

I had tried to maintain the following Parameter ID KS7 (From posting date) & KS8 (To posting date) with values (01.03.2015 - 31.03.2015) for our user under "Parameters" tab of SU01 as below -

However, the above user still could access data in the reports (e.g. FBL1N) for the posting date out of the above range setup in SU01 -

Could you advise whether it is possible to limit data access for a user in reports and/or documents with specified posting date range setup as above ? If so, how to setup to proceed it ?

Many Thanks,

KH Fong

bzyvp.png (8.6 kB)
kxxi1.png (22.5 kB)
mhofy.png (7.1 kB)
5rwip.png (5.1 kB)
10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

2 Answers

Jürgen L
Sep 27, 2017 at 11:35 AM
1

Parameters are used as entry aid. They are user specific defaults. They do not restrict users from entering a different date in this case.

Which would as well not make much sense, as users could maintain KS7 and KS8 dates their self in SU3. It would only be a step more to get to the data in the report if the entry in the screen of the report would be restricted (e.g. with a selection variant which does not have the fields visible)

Share
10 |10000 characters needed characters left characters exceeded
kwok ho fong Sep 28, 2017 at 01:51 AM
0

Dear Jurgen,

Thanks for your advice. Could you also advise whether it is possible to restrict users to view data in reports and documents according to the "Posting date range" setup for authorization in SU01 or PFCG or elsewhere ?

Tks,

KH Fong

Show 3 Share
10 |10000 characters needed characters left characters exceeded

I have not yet seen an authorization object where you can specify a date range.

And why should a user not see what was posted earlier if it is part of his job to see the current postings?

Isn't it likely that the same or similar posting which you try to hide will be seen again in future?

1

Dear Jurgen,

It is actually an auditor but not an user so our Finance user doesn't want the auditor to access the data out of the specified posting date range which might be confidential.

Tks,

KH Fong

0

Dear Jurgen / Experts,

Does it mean that no solution could be advised to restrict users to view data in reports and documents according to the "Posting date range" setup for authorization ?

Many Thanks,

KH Fong

0