Skip to Content
author's profile photo Former Member
Former Member

Deny access to queries with BEx Analyzer

Hi everbody,

I want that the user can't access queries directly from BEx Analyzer. They should always use the web applications specially designed for them. Because of some circumstances I can't prevent installing the BEx Analyzer on the user's computer.

Is there a way to lock the BEx Analyzer? (-> e.g. profile parameter, user profile, authorization object)

Thanks for your help.

Kind regards,

Hansjörg

Add comment
10|10000 characters needed characters exceeded

2 Answers

  • Posted on Jun 17, 2004 at 04:37 AM

    Hello Hansjörg,

    I have not tested it but if you remove the authorizations for S_RFC, the user should not be able to use BEx anymore. Web queries do not check this authorization object.

    More specifically, BEx does a check on the following function groups for authorization object S_RFC when you execute a query:

    RFC_TYPE=FUGR;RFC_NAME=RRY1;ACTVT=16

    RFC_TYPE=FUGR;RFC_NAME=RZX0;ACTVT=16

    RFC_TYPE=FUGR;RFC_NAME=RZX2;ACTVT=16

    RFC_TYPE=FUGR;RFC_NAME=RRMX;ACTVT=16

    Regards,

    Marc

    SAP NetWeaver RIG, US BI

    PS: Please note that those function groups could change in the next release.

    Add comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Jul 06, 2004 at 05:57 AM

    You can deny the access to BEx analyzer by restricting the transaction code RRMX in S_TCODE.

    Add comment
    10|10000 characters needed characters exceeded

    • Raju,

      S_TCODE is only checked if the user starts BEx from the SAPGUI. It is not checked if BEx is started from the Windows Start Menu or by opening SAPBEX.XLA directly.

      Regards,

      Marc

      SAP NetWeaver RIG, US BI