cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Authorizations in CRM 2007 - How to check missing authorization objects?

Go to solution
Former Member

on ‎11-20-2008 1:51 PM

0 Kudos

Hi,

In our project we are currently busy with the set up of authorizations.

I did create the necessary PFCG and Business roles.

For the PFCG roles, I did create all of them by copy of the standard SAP_CRM_UIU_FRAMEWORK so that the user can access to the web layout.

Now I need to give authorizations for other CRM objects, my question is: How can I see which objects are missing to displaying or creating activities in the new WEB Layout?

In the old days we used the SU53 to check the authorization objects that were missing, how can we do it now in this new release? I tried it and didn't worked out.

Thx

Regards

Hugo

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎11-20-2008 2:20 PM
0 Kudos

Hi Hugo,

You can do a ST01 trace. Pay particular attention to these objects when it comes to Web UI access.

UIU_COMP

C_LL_TGT

CRM_CONFIG

CRMCONFMOD

An alternative solution is to run report CRMD_UI_ROLE_PREPARE using your customized business role as input.

/Anders

Show replies
Show replies
Former Member
‎11-20-2008 4:56 PM
0 Kudos

Thanks Anders for your input.

I ran the report but this is showing me all the Objects assigned to the role. But in fact what I'm trying it's not to know which objects I have assigned to the role, but wich autorizathion values I'm missing to perform the task...

I tried also with the trace but I couldn't see any error messages...even for the authorization checks...

Thanks once again

Regards

Hugo

Former Member
‎11-21-2008 8:06 AM
0 Kudos

Hi,

For report CRMD_UI_ROLE_PREPARE you have to input a business role - not a PFCG role. Are you doing that?

Are you getting no results at all in ST01 or are all results just with return code 0?

You have to remember to set a filter for your user in ST01 before activating the trace. Another thing to check is if you are using several application servers. I would imagine the trace has to be activated on the same application server as the Web UI. You can change the application sever in SM51.

/Anders

Former Member
‎11-21-2008 9:29 AM
0 Kudos

Hi Anders,

Now I can see with ST01...we need to look at the light green lines, those are the ones where the authorization is missing.

With the report unfortunately I cannot see that info even using the Business role as input.

Thanks a lot for your help.

Regards

Hugo

Answers (0)

Ask a Question