Scribd Logo
Upload

Welcome to Scribd!

  • Maintaining Roles in SAP BW

    Uploaded by

    pmscribd12
    20 views11 pages
    Maintaining Roles in SAP BW

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Maintaining Roles in SAP BW

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    20 views11 pages

    Maintaining Roles in SAP BW

    Uploaded by

    pmscribd12
    Maintaining Roles in SAP BW

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 11

    Maintaining Roles and

    Authorizations in BI7.0 RSECADMIN

    Applies to:
    SAP Business Intelligence 7.0. For more information, visit the Business Intelligence homepage.

    Summary
    This paper will take you through the BI 7.0 Roles and Authorization related technical specifications using
    transaction RSECADMIN. The document will cover Maintaining Authorization objects, Assigning
    Authorizations to Users & Roles.
    Author:

    Soumyadeep Guha

    Company: Patni Computer System Ltd.


    Created on: 1 September 2009

    Author Bio
    Soumyadeep Guha is a BI Consultant working in Patni Computer System Ltd.. Soumyadeep
    has got a working expreince of more than 23 months in SAP-BI 7.0 , SAP BI 3.5 & SAP
    ABAP.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    1

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Table of Contents
    Introduction to Roles and Authorizations in BI7.0 .............................................................................................. 3
    Transactions Used .......................................................................................................................................... 3
    Creating Roles and Authorization objects ....................................................................................................... 3
    Creating Authorization objects ..................................................................................................................................... 3
    Creating Roles ............................................................................................................................................................. 7

    Related Content ................................................................................................................................................ 10


    Disclaimer and Liability Notice .......................................................................................................................... 11

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    2

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Introduction to Roles and Authorizations in BI7.0


    The Roles and Authorization maintained in BI7.0 provides a restriction on accessing reports based on
    infocube level, Characteristics level, Characteristics Value level, Key Figure level, hierarchy Node Level. The
    above mentioned restrictions are maintained by using this below mentioned approach;

    Authorizations are maintained in authorization objects.

    Roles contain the Authorizations.

    Users are assigned to roles.

    Transactions Used
    Infoobject Maintenance -

    RSD1.

    Role Maintenance -

    PFCG

    Roles and Authorization maintenance - RSECADMIN.


    Note: A Characteristic object should be Authorization Relevant to make it available for restrictions. To make a
    characteristics object, Authorization Relevant; Go to Business Explorer tab in Info object details. Without making
    an object Authorization relevant checked, we cannot use it or include it into the Authorization Object.

    Creating Roles and Authorization objects


    Creating Authorization objects
    Step 1: Transaction RSECADMIN -> Go to Tab Authorizations -> Maintenance.

    Step 2: Create an Authorization Object.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    3

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Step3: Click on Insert Special Characteristics

    0TCAACTVT

    Activity in Analysis Authorizations

    0TCAACTVT Grant authorizations to different activities like to change and Display, Default
    value is 03 Display.

    0TCAIPROV

    Authorizations for InfoProvider

    0TCAIPROV Grant authorization to particular InfoProviders, Default value is * .

    0TCAVALID

    Validity of an Authorization

    0TCAVALID Define when authorizations are valid or not valid, Default Value is * .
    Step 4: Include rows in the Authorization Structure. Add 0TCAKYFNM (Grant authorization to
    particular key figures) and authorization relevant objects on which we want to implement the
    restrictions.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    4

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Step 5: After including the Objects click on Node to edit the Values as per your requirements
    for both Value Restrictions and Hierarchy restrictions (If Present).
    Note: In this step you can choose either restricting on Values or Hierarchy nodes. The below screen shots will explain
    you how to do achieve these restrictions one by one. The First is restricting values and the later will show
    restricting on hierarchy nodes.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    5

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Step 6: This steps will create the restriction based on Infoprovidres (0TCAIPROV) and
    keyfigures (0TCAKYFNM), if not maintained manually, the default values will be *.

    Step7: Save the Authorization Object.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    6

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Creating Roles
    Step 1: Transaction RSECADMIN -> Go to User tab -> Role Maintenance.

    Step 2: Click on Single Role to create a new Role.

    Step 3: After creating the role, go to Authorization Tab, and Click on Change Authorization tab
    to assign the Authorization Object created.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    7

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Step 4: The above step will take you to Assignment of Authorization object. After assignment of
    authorization objects; click on Generate Profile.

    Step 5: Maintain the list of users in the user Tab and save the changes done in the role to get it
    activated for the users.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    8

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    This brings to the end of maintaining a complete set of Roles and Authorization for a user, there by restricting the
    user for Info Providers, hierarchy nodes, Characteristics and Characteristics Values, Key Figure etc.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    9

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Related Content
    An Expert Guide to new SAP BI Security Features
    https://www.sdn.sap.com/irj/scn/elearn?rid=/library/uuid/659fa0a2-0a01-0010-b39c8f92b19fbfea&overridelayout=true
    An Expert Guide to new SAP BI Security Features
    https://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/707cbec7-9716-2a10-8092cb7485e25de9&overridelayout=true
    For more information, visit the Business Intelligence homepage.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    10

    Maintaining Roles and Authorization in BI 7.0 - RSECADMIN

    Disclaimer and Liability Notice


    This document may discuss sample coding or other information that does not include SAP official interfaces and therefore is not
    supported by SAP. Changes made based on this information are not supported and can be overwritten during an upgrade.
    SAP will not be held liable for any damages caused by using or misusing the information, code or methods suggested in this document,
    and anyone using these methods does so at his/her own risk.
    SAP offers no guarantees and assumes no responsibility or liability of any type with respect to the content of this technical article or
    code sample, including any liability resulting from incompatibility between the content within this document and the materials and
    services offered by SAP. You agree that you will not hold, or seek to hold, SAP responsible or liable with respect to the content of this
    document.

    SAP COMMUNITY NETWORK


    2009 SAP AG

    SDN - sdn.sap.com | BPX - bpx.sap.com | BOC - boc.sap.com


    11

    You might also like