cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

DMS Content server restriction

Go to solution
Former Member

on ‎08-19-2010 12:23 PM

0 Kudos

Hi All,

In the past we have tried to restrict user access to DMS data (on content server) using DOC type/status restriction. Now we are trying to explore the possibilities of restricting users from accessing export control data from a specific content server.

1. Is there a authorization object using which we can define what content server one have access/restriction?

2. If answer is NO is there a standard method industry is following for this?

Suresh.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎08-20-2010 6:38 AM
0 Kudos

Authorization Object C_DRAW_TCD (Activities for Documents)

The following table shows authorization object C_DRAW_TCD. This object controls which users can process which document info records, based on a combination of activity and document type.

Fields

Possible Values

Description

ACTVT

(Activity)

01

02

03

06

17

Create

Change

Display

Delete

Maintain number range object

DOKAR

(Document type)

The activities can be executed for the document type.

Authorization Object C_DRAW_TCS (Status Dependent Authorization)

The following table shows authorization object C_DRAW_TCS. This object controls which users can process which document info records, based on a combination of activity, document type, and status.

Fields

Possible Values

Description

ACTVT

(Activity)

01

02

03

06

Create

Change

Display

Delete

DOKAR

(Document type)

The activities can be executed for the document type.

STATUS

(Document status)

Authorization Object C_DRAW_STA (Document Status)

The following table shows authorization object C_DRAW_STA. This object controls which status(es) can be set for which document type.

Fields

Description

DOKAR

(Document type)

The statuses are allowed for this document type.

DOKST

(Document status)

Authorization Object C_DRAW_BGR (Authorization Group)

The following table shows authorization object C_DRAW_BGR. This authorization object allows you to limit access to individual documents.

Fields

Possible Values

Description

BEGRU

(Authorization group)

0000 - ZZZZ

Used to restrict the authorizations for document maintenance further.

Authorization Object C_DRAW_DOK (Document Access)

The following table shows authorization object C_DRAW_DOK. This authorization object controls which original data of a specific document type there are access authorizations for.

Fields

Possible Values

Description

ACTVT

(Activity)

52

53

54

55

56

57

Change application start

Display application start

Display archive application

Change archive application

Display archive

Store archive

DOKAR

(Document type)

Here you enter the document type that access to original data is allowed for.

Authorization Object C_DRAD_OBJ (Object Link)

The following table shows authorization object C_DRAD_OBJ. This object controls which users can process which document info records, based on a combination of activity, object, and status.

Fields

Possible Values

Description

ACTVT

(Activity)

01

02

03

06

Create

Change

Display

Delete

DOKOB

(Object)

You must enter the data base table for the objects here (for example, MARA for material record).

STATUS

(Document status)

Show replies
Show replies
Former Member
‎08-23-2010 2:01 PM
0 Kudos

Thanks for the response.

Can you/others please help me know way to restrict access to a content server.

Is there any specific authorization object?

If not is there a way to block set of users from accessing data from a specific server?

Thanks,

Suresh.

Answers (3)

Answers (3)

Former Member
‎10-01-2010 9:32 AM
0 Kudos

Hi Manoj, Anil, Ravindra and Hopf,

Thank you all for the info offered.

The query was raised during the project proposal stage. Hopf's suggesion seems to be interesting to explore.

Unfortunately we didn't get the project, but I am sure this info would be helpful to others who are seeking info on this.

I am closing this thread.

Again thanking you all,

Suresh Bodhi

Show replies
Show replies
Former Member
‎09-28-2010 5:53 AM
0 Kudos

Hi Suresh,

As on today, there is no object in dms roles to restrict the access to content server. Server based restriction functionality is not available in dms.

Hope this will help.

Regards,

Ravindra

Show replies
Show replies
christoph_hopf
Advisor
Advisor
‎09-28-2010 9:57 AM
0 Kudos

Hi Suresh,

from DMS point of view I can only confirm that there is no standard authorization object to restrict an user to checkin files to a specific storage category or content repository.

But maybe you can use one of the DMS BADIs like DOCUMENT_STORAGE01 with methods BEFORE_PHYSICAL_CHECKIN or BEFORE_CHECKIN coufd be useful to implement an individual check. Here a check should be possible for the userID and the choosen storage category. And so you should be able to allow only specific users to checkin original files to specific storage categories.

Best regards,

Christoph

Former Member
‎08-23-2010 2:09 PM
0 Kudos

In DMS we have the above authorization objects...

Please if any of the above is useful for your requirement.

Regards,

Lalit Mohan Gupta

Show replies
Show replies
Former Member
‎08-26-2010 8:58 AM
0 Kudos

Lalit,

thanks for the reply. None of the object is content server specific.

We are thinking of going for NEXTLABS solution for export data access control.

If you have any info on NEXTLAB integration with SAP DMS pls do help us.

Thanks,

Suresh.

Former Member
‎09-27-2010 12:39 PM
0 Kudos

Hi,

even i have a similar requirement for controlling access, the proposed on is NextLabs..if you have implemented this then can you pls help in getting some useful documents?

Thank You,

Manoj

Former Member
‎09-28-2010 12:19 AM
0 Kudos

There is an out of the box solution from NextLabs that comes with installation guide. It is Compliant Enterprise. Is this what you are looking for?

Info Link - [http://ecohub.sdn.sap.com/irj/ecohub/solutions/compliantenterprise]

Ask a Question