Professional Documents
Culture Documents
Bi2008 - Bi 7.0 Roles & Authorizations - V1.0: India Sap Coe, Slide 1
Bi2008 - Bi 7.0 Roles & Authorizations - V1.0: India Sap Coe, Slide 1
0 Roles &
Authorizations – v1.0
2 TellMe
3 ShowMe
4 LetMe
5 HelpMe
India SAP CoE, Slide 2
BI2008 - BI 7.0 Roles &
Authorization - v1.0
1 PrepareMe
2 TellMe
3 ShowMe
4 LetMe
5 HelpMe
India SAP CoE, Slide 3
Introduction
• Purpose
• Use
• Challenges
2 TellMe
3 ShowMe
4 LetMe
5 HelpMe
India SAP CoE, Slide 8
SAP Authorization Concept
• Involves protecting transactions, specific field values,
programs, and services in SAP systems from
unauthorized access.
• On the basis of the authorization concept,
administrator assigns authorizations to the users that
determine which actions a user can execute in the
SAP System.
• The authorizations represent instances of generic
authorization objects and are defined depending on
the activity and responsibilities of the employee. The
authorizations are combined in an authorization profile
that is associated with a role.
M:N
COMPOSITE ROLE
COMPOSITE PROFILE
M:N MANUAL
PROFILE AUTHORISATION AUTH. 1:10 AUTH. FIELDS
OBJECT WITH VALUES
MANUAL
PROFILE AUTHORISATION AUTH. 1:10 AUTH. FIELDS
OBJECT WITH VALUES
Step 1 : Create a
‘Role’ using the
transaction PFCG
• On Infocube Level
– Restriction at Infocube Level
1. Authorization :
– Authorization object S_RSEC.This which covers all relevant objects with
namespace authorizations for specific activities.
Standard Analysis
Authorization Authorization
Authorization
Object* Use
• Singular event
2 TellMe
3 ShowMe
4 LetMe
5 HelpMe
India SAP CoE, Slide 34
Analysis Authorizations
Steps to create and assign Analysis Authorization in brief:
2.Auth Structure
after insertion of
special
characteristics
Select a characteristic
say ‘0TCTAACTVT’ and
click on ‘Details’ to
maintain values for
Authorization
1.Choose the
infoprovider
option
2.Provide the
infoprovider
name in the next
pop-up and
select ‘Enter’
1.Select Hierarchy/
Authorizations Tab
and click in ‘Create’
Assign relevant
authorization. For e.g.
for Complete hierarchy
authorization ,Type = 3
is used
Select
‘Assignment’
Enter username
and click on
‘Change’.
Step 1 d :Check the generated error log once the user has
executed the Query .For this use the transaction
RSECADMIN - > Analysis tab -> ‘Error logs’ option.
Provide the
Username and time
of run in the selection
screen and select
‘Display’ option to
view the log
2 TellMe
3 ShowMe
4 LetMe
5 HelpMe
India SAP CoE, Slide 63
LetMe
• Step 1. Create Analysis Authorization
2 TellMe
3 ShowMe
4 LetMe
5 HelpMe
India SAP CoE, Slide 65
Useful Transaction codes
Transaction code Use
RSECADMIN For creating and assigning analysis
authorizations and checking errors
in analysis authorization.
http://help.sap.com/saphelp_nw04s/helpdata/en/be/07
6f3b6c980c3be10000000a11402f/frameset.htm