Professional Documents
Culture Documents
Maintaining Roles in SAP BW
Maintaining Roles in SAP BW
Applies to:
SAP Business Intelligence 7.0. For more information, visit the Business Intelligence homepage.
Summary
This paper will take you through the BI 7.0 Roles and Authorization related technical specifications using
transaction RSECADMIN. The document will cover Maintaining Authorization objects, Assigning
Authorizations to Users & Roles.
Author:
Soumyadeep Guha
Author Bio
Soumyadeep Guha is a BI Consultant working in Patni Computer System Ltd.. Soumyadeep
has got a working expreince of more than 23 months in SAP-BI 7.0 , SAP BI 3.5 & SAP
ABAP.
Table of Contents
Introduction to Roles and Authorizations in BI7.0 .............................................................................................. 3
Transactions Used .......................................................................................................................................... 3
Creating Roles and Authorization objects ....................................................................................................... 3
Creating Authorization objects ..................................................................................................................................... 3
Creating Roles ............................................................................................................................................................. 7
Transactions Used
Infoobject Maintenance -
RSD1.
Role Maintenance -
PFCG
0TCAACTVT
0TCAACTVT Grant authorizations to different activities like to change and Display, Default
value is 03 Display.
0TCAIPROV
0TCAVALID
Validity of an Authorization
0TCAVALID Define when authorizations are valid or not valid, Default Value is * .
Step 4: Include rows in the Authorization Structure. Add 0TCAKYFNM (Grant authorization to
particular key figures) and authorization relevant objects on which we want to implement the
restrictions.
Step 5: After including the Objects click on Node to edit the Values as per your requirements
for both Value Restrictions and Hierarchy restrictions (If Present).
Note: In this step you can choose either restricting on Values or Hierarchy nodes. The below screen shots will explain
you how to do achieve these restrictions one by one. The First is restricting values and the later will show
restricting on hierarchy nodes.
Step 6: This steps will create the restriction based on Infoprovidres (0TCAIPROV) and
keyfigures (0TCAKYFNM), if not maintained manually, the default values will be *.
Creating Roles
Step 1: Transaction RSECADMIN -> Go to User tab -> Role Maintenance.
Step 3: After creating the role, go to Authorization Tab, and Click on Change Authorization tab
to assign the Authorization Object created.
Step 4: The above step will take you to Assignment of Authorization object. After assignment of
authorization objects; click on Generate Profile.
Step 5: Maintain the list of users in the user Tab and save the changes done in the role to get it
activated for the users.
This brings to the end of maintaining a complete set of Roles and Authorization for a user, there by restricting the
user for Info Providers, hierarchy nodes, Characteristics and Characteristics Values, Key Figure etc.
Related Content
An Expert Guide to new SAP BI Security Features
https://www.sdn.sap.com/irj/scn/elearn?rid=/library/uuid/659fa0a2-0a01-0010-b39c8f92b19fbfea&overridelayout=true
An Expert Guide to new SAP BI Security Features
https://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/707cbec7-9716-2a10-8092cb7485e25de9&overridelayout=true
For more information, visit the Business Intelligence homepage.