Skip to Content
avatar image
Former Member

SAP BW Security & Authorization

Hi

I am working SAP BO, i understand the security model of BO but it is very difficult to understand the security model of SAP BW. We have two concept, Security and Authorization. From my understanding, using Authorization we can limit the data access to user. For example, if cube has 100 records, we have show only 10 records to specific users. It will work like user->role>-authorization. I want to know what is security in BW, if new user enters in to BW to report =, what are the security aspects need to check to provide access.

Is it authorization and security both same in SAP BW?

Can you please clarify my questions also provide some documents for SAP BW Security.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • avatar image
    Former Member
    Nov 30, 2016 at 07:09 AM

    Hi Hariharan,

    Basically there are 2 ways by which Authorization is given

    1: Data level 2. Transaction level.

    Authorization are granted with the help of roles and also analysis authorization. When you think about authorization for organizational level it is done with the help of analysis authorization. For eg costcenter related authorisation is provided with the help this.

    Reporting authorization is provided with the help of roles.

    I would take your example of 100 records in the cube level. Say for eg if the user is suppose to see a particular set of data then it is possible with the help of authorization. Infoobject level authorization is provided and then based on that infoobject user may / maynot be able to see the data.

    Analysis profiles are created and can be assigned to the user or it can be added in the roles and these roles are assigned to the user.

    Regards

    Vivek

    Add comment
    10|10000 characters needed characters exceeded

  • Dec 01, 2016 at 04:26 PM

    Hi Hariharan,

    official documentation about authorizations is available from this page.

    It's quite important to understand that there are two authorization concepts: standard authorizations governing user activities and analysis authorizations that govern the access to data in reporting and planning.

    An important aspect of analysis authorizations is that they follow an all-or-nothing rule: if the user tries to access data and there is just one little bit of (potential) data that he is not authorized to see, access will be denied.

    Analysis authorizations are described in detail in this sub-section.

    Best regards,

    Marc

    Add comment
    10|10000 characters needed characters exceeded