cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Grant activity 10 (post) and block activity 32 (save) in FBCJ

Former Member

on ‎07-27-2010 2:56 PM

0 Kudos

Hi,

Control access to the transaction FBCJ through the object F_FBCJ. This object has the following activities:

33 = read

02 = change

32 = save

10 = post

06 = delete

36 = extended maintenance

I created a profile "Test" with permission only on activities 33(read), 02(change) and 10(post). I included a user test this profile using the authorization group according SAP note 502096.

When the test did notice that the user cannot perform the activity 10 (post). As I was informed above the activity 10(post) was granted.

I discovered after tests that the user can use the activity 10(post) only when the activity 32(save) is also provided in his profile. It does not meet my needs, because as rule of the company users should only use the activity 10(post). The activity 32(save) not be granted.

In short, I must grant the activity 10(post) to users without granting the activity 32(save).

Note:

What is most strange is that I can do the opposite, that is, give the activity 32(save) and block the activity 10(post). In this case the restriction works correctly.

Regards,

Andreia Lucena

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

joo_borralho
Explorer
‎08-19-2013 11:02 AM
0 Kudos

Hi Andreia,

I have the same problem in my company.

Did you resolve the problem?

Regards,

João Borralho

Show replies
Show replies
waman_shirwaicar
Active Contributor
‎07-28-2010 10:56 AM
0 Kudos

Hi,

The cash journal authorization object F_FBCJ allows the administrator to grant detailed authorizations to users. The following activities can be differentiated:

Activity 32: Read and Save cash journal entries

Activity 10: Post cash journal entries

Activity 36: Customizing

Activity 06: Delete cash journal entries

To activate the authorization concept, the administrator has at least to fill the field "Authorization group" in the cash journal customizing transaction FBCJC0. The other steps are the normal ones (regarding profiles).

Did you enter at transaction FBCJC0 the authoristion group for the company code and the cash journal you would like to check authorisations?

I assume authorization group setting is missing. Authorization object "F_FBCJ" must be combined with authorization group for Cash Journal and permitted activity. Please read note 502096 and 546365 (Q & A for [7]) for more details. In addition, please make sure that you generate the authorization profile/the role before testing. Also read notes 304685 and 304984.

regards

Waman

Show replies
Show replies
Former Member
‎07-28-2010 8:08 PM
0 Kudos

Hello,

Tks for your answer... but I did all the configuration according the SAP notes you mention. For me it seems that is not possible to post (activity 10) directly, because the system checks the authorization for save (activity 32).

Do you know if itu2019s true? Thereu2019s any way to skip this check?

Regards,

Ask a Question