Professional Documents
Culture Documents
BW Securitypdf
BW Securitypdf
AUTHORIZATIONS
An authorization defines what a user
can do, and to which SAP objects.
For example, a user may be able to
display and execute, but not change,
a query. Authorizations are defined
using authorization objects
|
In general r/3 security is focused on
Transaction codes.
Specific field values.
Which activities a user can perform.
|
AUTHORIZATION PROFILE
AUTHORIZATION OBJECTS
'%
Tcode [ PFC_
Authorization Objects-
Objects-S_RS_COMP,
S_RS_ICUBE,S_RFC
*#$
%.%
Make the info object authorization
relevant.
Create your own authorization
object.
Tcode:RSSM
Now add this authorization object in role.
Create a variable for your query.
Now if you execute the query you will see
all the values.
Authorization for infoobject is checked but
since the data its picking up from infocube
and for infocube no authorization is being
set.
,/'*#
%.
Now check the query it will only give
the result for which user is
authorized.
Also you can make the query variable
itself checking the authorization:
In the variable screen give variable
type as authorization variable.
And uncheck ready to input
checkbox.
'0
Make the info object used as
Hierarchy node authorization
relevant.
Create an authorization object for
hierarchy and go to radio button
authorization definition fr hier.
Fill The entries:
Also check that field 0tctauthh is
made authorization relevant and
included in your authorization object.
Enter the authorization object in your
role.
_enerate the profile.
And execute the query.
You should see only the node which
you made authorization relevant.
|'&/#/
_o to Programs[
Programs[buisness
explorer[[Browser.
explorer
Authorization Objects:
S__UI[
S__UI[ authorization for gui activities
S_BDS_DS[[ authorization for document set.
S_BDS_DS
To save workbooks to roles:
S_user_agr: Authorizations:Role check
S_user_tcd: Transaction in roles
_o to Menu tab in the roles and
insert two folders
Now save your workbooks in these
roles ,so that only authorized user
can access workbooks.