Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

MSS Users having Structure profile SAP* (ALL)

former_member275658
Contributor

‎07-11-2012 8:35 PM

0 Kudos

Hi Gurus,

We have created structural profile as ZHR*** and added this profile and sap* (ALL) profile to the MSS users. Modified the MSS role and added ZHR** profile in p_orgincon.

I am confused why MSS user has SAP* (ALL) profile when we designed a custom profile for MSS users. Could you please advise for what reason we should assign ALL and ZHR** in OOSB for the MSS users.

Also, is * and ALL both are same.

Thanks,

Salman

3 REPLIES 3

wilder_latino
Explorer

‎07-16-2012 2:23 PM

0 Kudos

Well if you have a user that is a HR Director and also Manager at the same time. In this example the HR Director would need the ALL to just display all employees and the ZHR for his/her MSS functionality.

Former Member

‎07-18-2012 10:52 AM

0 Kudos

Hi Salman,

First off, if you are using P_ORGINCON (Context based structural authorization) then you do not need to assign any profile thru' OOSB to any user as the structural profile is assigned via the role in P_ORGINCON's field 'PROFL'.

Make sure you have turned on the context switch via OOAC (AUTSW   INCON = 1 along with Structural auth main switch AUTSW ORGPD = 1). Also, you will need to implement BADI HRBAS00_GET_PROFL so that user's profiles are determined from PROFL field of assigned roles and not T77UA directly. In this case, your T77UA table should have just one entry of SAP* with structural profile ALL.  You might check if the BADI is already implemented in your system or not via tcode HRAUTH.

Once these steps are taken care of, schedule daily background jobs for reports RHBAUS00,01 and 02 to improve your system's performance.

Hope this helps!

Thanks

Sandipan

wilder_latino
Explorer

‎07-18-2012 2:41 PM

0 Kudos

Well with the BADI you don't have to maintain OOSB but you can't execute program RHBAUS02 as users are selected from table T77UA which is OOSB. So if you don't maintain OOSB than you will have to manually enter users in table T77UU.

I would just add the Structural Authorization to the Positions that require it and execute the RHPROFL0 and the the rest of the RHBAUS* programs in background.

You could even automate this option by writing your own custom program that looks are every valid position with a relationship 012 that it would automatically add the PFCG MSS Role and the MSS Structural Authorization or whatever is your requirement.