Skip to Content
avatar image
Former Member

fix user id with profit center

Dear All,

Is it possible to restrict user id with a particular profit center??

What We need is that every user id should be restricted for a particular profit center.

(In our company , profit center is for external reporting purpose

balace sheet and profit & loss is also generated through profit center )

thanks & rgds

Amit

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

3 Answers

  • avatar image
    Former Member
    Mar 14, 2008 at 11:26 PM

    Hi Amit,

    For this you will have to create those many numbers of roles as there are users (1 for each profit center).

    Whenever you add transaction codes to roles involving authorization on profit center, you'll get 'Profit Center' as an organizational level itself.

    There you can define whatever profit center you want to allow the user to use.

    Additionaly, the authorization objects relating to profit centers are -

    A_IMPR_PRC - Profit Center for Investment Program Positions

    C_PROJ_PRC - PS: Profit center for project definition

    C_PRPS_PRC - PS: Profit Center Authorization for WBS elements

    K_PCA - EC-PCA: Responsibility Area, Profit Center

    K_PCAS_PRC - EC-PCA: Profit Centers

    -Neha

    Add comment
    10|10000 characters needed characters exceeded

  • Mar 15, 2008 at 01:30 PM

    Neha gives good advice on what you need to technically do.

    What I will also comment on is that you should avoid doing this unless you really, really need to. The restriction mechanism around the CO module has some fundamental flaws in it and it does not lend itself to being a primary restriction.

    If your PRCTR structure is like most others then you will have hundreds of variants of some roles which could be a maintenance nightmare. There are things you can do to mitigate this but they require technically complex solutions to make it efficient to maintain and to retain a good level of security.

    People may recommend using enabler or value roles (info on these if you search on those terms) but you have to consider breaking the standard role concept and avoiding giving access to extra auth objects.

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Mar 17, 2008 at 05:53 AM

    Dear All,

    thanks .....SAP Gurus

    Add comment
    10|10000 characters needed characters exceeded