cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Authorization in reports

Former Member

on ‎04-30-2004 4:54 PM

0 Kudos

Hello everyone,

i have a quick question for the security guys out there in the BW (and of course everybody else that might be able to help!):

I have created an InfoObject called ZCOMPANY which contains all subsidiaries of our organization.

I have checked the flag Authorization relevant under of the "Business Explorer" tab in the InfoObject maintenance.

Now i need to have the ability to restrict user access to the companies in reports. I have one master set of reports that should be available to everybody but with access only to companies i assign to them.

We have 29 companies in our organization and i would hate to create a report for every one possible combination of companies and assign those reports to individual user by assigning individual roles!

How do i set that up in the role/profile maintenance? which authorization object is the be used and how?

Did anybody ever do this and knows how this works?

Any help is greatly appreciated....

Thanks

Stephan Engler

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
‎05-03-2004 2:57 AM
0 Kudos

Here's a starting point ...

http://help.sap.com/saphelp_bw33/helpdata/en/72/eeb23b94c6e54be10000000a11402f/frameset.htm

Outline steps...

In RSSM:

Create authorization object

Make authorization object applicable to relevant InfoProviders

In PFCG:

Add authorization object to new or existing Roles with appropriate field assignments

Make User/Role assignments

NOTE: If any ZCOMPANY hierarchy will be active in any queries you will need to include 0TCTAUTHH and follow steps for hierarchy authorizations (groan!).

Show replies
Show replies
Former Member
‎05-01-2004 11:26 AM
0 Kudos

Hello Stephen

You have to create a Reporting Object based on the ZCOMPANY object. There is documentation in Service.sap.com to do this. Once you have done this, you can then use this Reporting Object in the different Roles to specify the restrictions. And attach the users to these roles.

Let me know how you go with this.

Navin N

Show replies
Show replies
Ask a Question