cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Doubt in implementing authorization model

Go to solution
Former Member

on ‎12-17-2012 7:11 PM

0 Kudos

Hi all,

We are struggling to implement an authorization model using BW7.x concept.

So far we have defined 0COSTCENTER as authorization relevant and created one authorization using RSECADMIN.

We have defined that the user XPTO only has access to Costcenter 20905400. We have created one query and created a variable of type authorization.

When the query is executed the variable is automatically filled with Costcenter 20905400 and the user can only see the values posted to Costcenter 20905400.

Nevertheless if the user, in the variable screen, removes the pre-filled variable and executes the query, no values are shown and the system tells that there are not sufficient authorizations.

Is there any way the user can left the variable blank and the system automatically returns only values for the Costcenter he has authorization?

Many thanks,

Show replies
Show replies
Answer

Answers (1)

Answers (1)

Former Member
‎12-18-2012 7:37 AM
0 Kudos

Hi,

Normally, when Authorization variable is used, The query checks for the authorization available for that particular USER ID and then shows the values. In the scenario that you have mentioned, the cost center values should be visible to all the users who are not restricted.

We have implemented similar authorization check on one of the queries and it works fine.

I think looping in the security team will help you as they can check and tell you what authorization object the system is checking when it is denying the access.

Following document might also be useful:

http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/4753ed83-0e01-0010-e186-f98413f86...

Regards,

Saurabh

Show replies
Show replies
Ask a Question