on 07-27-2010 2:56 PM
Hi,
Control access to the transaction FBCJ through the object F_FBCJ. This object has the following activities:
33 = read
02 = change
32 = save
10 = post
06 = delete
36 = extended maintenance
I created a profile "Test" with permission only on activities 33(read), 02(change) and 10(post). I included a user test this profile using the authorization group according SAP note 502096.
When the test did notice that the user cannot perform the activity 10 (post). As I was informed above the activity 10(post) was granted.
I discovered after tests that the user can use the activity 10(post) only when the activity 32(save) is also provided in his profile. It does not meet my needs, because as rule of the company users should only use the activity 10(post). The activity 32(save) not be granted.
In short, I must grant the activity 10(post) to users without granting the activity 32(save).
Note:
What is most strange is that I can do the opposite, that is, give the activity 32(save) and block the activity 10(post). In this case the restriction works correctly.
Regards,
Andreia Lucena
Hi Andreia,
I have the same problem in my company.
Did you resolve the problem?
Regards,
João Borralho
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
The cash journal authorization object F_FBCJ allows the administrator to grant detailed authorizations to users. The following activities can be differentiated:
Activity 32: Read and Save cash journal entries
Activity 10: Post cash journal entries
Activity 36: Customizing
Activity 06: Delete cash journal entries
To activate the authorization concept, the administrator has at least to fill the field "Authorization group" in the cash journal customizing transaction FBCJC0. The other steps are the normal ones (regarding profiles).
Did you enter at transaction FBCJC0 the authoristion group for the company code and the cash journal you would like to check authorisations?
I assume authorization group setting is missing. Authorization object "F_FBCJ" must be combined with authorization group for Cash Journal and permitted activity. Please read note 502096 and 546365 (Q & A for [7]) for more details. In addition, please make sure that you generate the authorization profile/the role before testing. Also read notes 304685 and 304984.
regards
Waman
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello,
Tks for your answer... but I did all the configuration according the SAP notes you mention. For me it seems that is not possible to post (activity 10) directly, because the system checks the authorization for save (activity 32).
Do you know if itu2019s true? Thereu2019s any way to skip this check?
Regards,
User | Count |
---|---|
110 | |
12 | |
11 | |
6 | |
5 | |
4 | |
4 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.