Quantcast
Channel: SCN : All Content - SAP Business Explorer (SAP BEx)
Viewing all articles
Browse latest Browse all 3763

Authorization for Query Elements.

August 20, 2013, 5:33 am
$
0
0

Introduction:

 

With authorization objects you can control the extent to which a user can create or change a query. Authorization for query elements are part of BW Predefined authorizations (RS).Authorizations are user specific and basically set on mainly two authorization objects namely S_RS_COMP and S_RS_COMP1.The full list of the authorization object involved into authorization for a particular query includes the following objects.

 

  • S_RS_COMP 
  • S_RS_COMP1
  • S_RS_FOLD
  • S_USER_AGR
  • S_GUI.

 

S_RS_COMP: Object S_RS_COMP contains the main information about user's authorization for query elements.This object has 5 fields:

 

  • ACTVT Activity contains activities which are allowed for this user like 'change', 'display', 'create' and so on
  • RSINFOAREA InfoArea contains the names of the InfoAreas a given user is allowed to process
  • RSINFOCUBE InfoCube/InfoProvider contains the names of the InfoProvider a given user is allowed to process
  • RSZCOMPID Name (ID) of a reporting component contains the technical names of component a given user is allowed to process.
  • RSZCOMPTP Type of a reporting component contains the types of components for ex. CKF,RKF,STR,REPand VAR.

 

S_RS_COMP1: This is just extension of S_RS_COMP. It adds only one field OWNER. This field helps to restrict query component authorization with regards to the owner.

This object is checked with the conjuction with S_RS_COMP. Usage of this field with the value $USERallows to restrict the authorization for a system user to only queries or query components created by this particular user. This object have 4 fields:

 

  • RSZCOMPID Name (ID) of a reporting component.
  • RSZCOMPTP Type of reporting component.
  • RSZOWNER Reporting component owner determines whose components are allowed to be edited by the user
  • ACTVT Activity.

 

S_RS_FOLD: This authorization object helps to deactivate the general view of the 'InfoArea' folder.It is just a parameter which allows to switch on/off the display of folders in the Role Menu. This object have only 1 field:

 

  • SUP_FOLDER: To authorize, set the field to 'True' ('X') else set to blank.

S_GUI : This object requires activities 60 and 61 to be able to work with the frontend applications

 

S_USER_AGR: This authorization object protects role.to save/delete a query from role, this object must be restricted. you should have the authorization to change/delete the concerned role. this object have

  • Activity (ACTVT).
  • Role Name (ACT_GROUP).

Search
Viewing all articles
Browse latest Browse all 3763
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>