This action might not be possible to undo. Are you sure you want to continue?
Scenario: To enable authorization for various company codes to the group of users. Following steps carried out to implement this scenario. Step 1: Create the authorization object. Tcode: RSECADMIN
Click on Maintenance button. Following screen is seen.
Give the name such as “ZAUTH_COMP1” and click on create. .
give the infoobject “0COMP_CODE” (make sure this infoobject has to be “authorization enabled”).In the Charact/Dimensions column. Dblclick on the infoobject to specify the intervals as follows. . Enter all other infoobjects seen above as these are the necessary infoobjects to enable authorizations.
Repeat step1 for the infoobject “0C_CTR_AREA”. Include all the necessary infoobjects mentioned above along with 0C_CTR_AREA. This is required to validate the company code. .Interval values maintained for the given infoobjects are as follows: 0TCTADTO : 0TCTAUTH 0TCTDSTOBJ 0TCTHIGH 0TCTIOBJNM 0TCTLOW 0TCTUSERNM assigned) I I I I I I I CP EQ EQ EQ EQ EQ EQ * CHA 0COMP_CODE 1000 0COMP_CODE 1000 ROLE_TEST (username to whom the auth.obj to be Step 2: Tcode: RSECADMIN Create the supplementary authorization object “ZAUTH_COMP2” for Credit Control Area.
In the intervals of 0C_CTR_AREA. . specify “ * “ as follows.
Step 3: Tcode: RSECADMIN Create the common authorization object “ZAUTH_COMP” to include 0COMP_CODE. 0C_CTR_AREA plus all the necessary infoobjects mentioned above. .
.Give following in the intervals of “0COMP_CODE”.
.The “ : “ in the above screen is the instruction to the system to go ahead with the further authorizations. Keep “ * “ in the intervals of “0C_CTR_AREA”. Step 4: Tcode: PFCG Create a role for company_code authorization.
Click on create Single Role. The following screen is seen. .
.Step 5: Tcode: PFCG Click on “Change Authorization Data” above.
Click on “Manually” for Manual entry of authorization objects above. . Enter the authorization objects which we have created earlier as above. Give “S_RS_AUTH” as shown above and click ok.
For this purpose we need to give S_RS_COMP. S_RS_COMP1. Give the respective object names as per the requirement. assign the user names. Infoarea or Query level. S_RS_ICUBE.Step 6: Tcode: PFCG In the user tab of the role. Step 7: Tcode: PFCG Step 5 mentioned above can be repeated if we have to implement the authorizations to Infocube. .