Skip to Content
avatar image
Former Member

Authorization for a WBS / Activity

Dear Gurus,

The scenario is like this -

Our client is operating on ETO scenario and have 4 - 5 departments viz. engineering, procurement, production, Installation etc. The major business runs through projects.

I have allocated WBS elements for each of their departments and activities are linked to it.

The client requirement is as follows:

1) Particular department users should be able to access their WBS (Ex. Engineering users should access and confirm their relevant activities)

2) No other dept person should be able to modify other's WBS.

3) Anybody in the company should be able to view all WBS but should not be able to modify it.

4) Some of the WBS should not be even viewed by anybody barring personnel from that department only.

5) Project manager should be able to view all WBS but should not be able to modify any of them. But if project manager is a part of dept then he should have modify access to his WBS but view access for all WBS.

Request you to suggest me how to configure this in the system preferably with an example.

Will give full marks to the relevant answers.

Awaiting your reply.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

3 Answers

  • avatar image
    Former Member
    Sep 11, 2008 at 12:26 PM

    This is done using authorisation objects. Please user MRP Group for controlling authorisation on activities and use project manager/ person responsible on WBS Element. You will have to work out a complete strategy and logic and then use these.

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Sep 11, 2008 at 12:57 PM

    You need to give a holler to your security team here. All of your requirements can be met but you have to connect with your security guy and disccuss it further. As an example - you can restrict your Engineering department etc by plant, business area or company code etc.

    Certainly all of this is possible.

    Hope it helps.

    Arya

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Sep 12, 2008 at 04:10 AM

    Mainly, there is 2 relevant control in authorization:

    1) transaction code:

    goto table USOBT, enter transaction code, example CJ01 into the field NAME

    it will list down all the relevant authorization objects and values being validated

    2) organizational value(example business area, cost center) control in the authorizatio role

    authorization role, is having both info about organizational control and authorization objects.

    can be viewed by pfcg

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      hi, u can use the exit CNEX0002 and the function exit is EXIT_SAPLCNAU_002.

      take the help of the abaper and a basis guy.

      so that they can create an object with ur specified criteria and can attach to the user profile of the user, this will solve the purpose.

      regards

      ashis