https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097291#M102464 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P> amit i added that authorized object into the role and i generated that role. Then other than me able to access that field. </P><P></P><P>rgds</P><P>p.kp</P></BODY></HTML> Tue, 06 Dec 2005 09:34:10 GMT Former Member 2005-12-06T09:34:10Z https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097287#M102460 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P> I have created authorizatin field for authorization object and class. So now how can i add this authorizationh object for a particular user.</P><P></P><P></P><P>rgds</P><P>p.kp</P></BODY></HTML> Tue, 06 Dec 2005 08:59:16 GMT https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097287#M102460 Former Member 2005-12-06T08:59:16Z https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097288#M102461 <HTML><HEAD></HEAD><BODY><P>Where ever you need to restrict..</P><P>by providing the piece of code...</P><P>in initalization </P><P>authority-check object 'V_VTTK_SHT'</P><P> id 'ACTVT' field '02'</P><P> id 'SHTYP' dummy.</P><P></P><P> if sy-subrc &lt;&gt; 0.</P><P> message e059(zz).</P><P> endif.</P></BODY></HTML> Tue, 06 Dec 2005 09:04:24 GMT https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097288#M102461 Former Member 2005-12-06T09:04:24Z https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097289#M102462 <HTML><HEAD></HEAD><BODY><P>Hi paluri,</P><P></P><P>1. what i understand is that u </P><P> want to provide rights to a user</P><P> for your authoirsation object.</P><P> (not how to use in abap using authority-check)</P><P></P><P>2. well for that u have to assign</P><P> thru roles:</P><P> use tcode PFCG.</P><P></P><P> in that u have to select/enter a role</P><P>3. There after u can add a authorisation</P><P> object manually and provide</P><P> the rights - field wise.</P><P></P><P>Probably the basis team might help you for this.</P><P></P><P></P><P>regards,</P><P>amit m.</P></BODY></HTML> Tue, 06 Dec 2005 09:04:43 GMT https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097289#M102462 Former Member 2005-12-06T09:04:43Z https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097290#M102463 <HTML><HEAD></HEAD><BODY><P>Hi</P><P> for a particular user we have three ways of authorization check:</P><P></P><P>&lt;b&gt;Authorization &lt;/b&gt;</P><P>Enter in the user master record or part of an authorization profile. An authorization comprises complete or generic values for the authorization fields in an authorization object. The combination determines the activities with which a user can access certain data. </P><P></P><P>Maintenance in transaction SU03 or generation from transaction PFCG (profile generator for role maintenance). </P><P></P><P>&lt;b&gt;Authorization Profile &lt;/b&gt;</P><P>Grouping of several individual authorizations or further authorization profiles. Can be entered in the user master record instead of individual authorizations. An authorization can be assigned to authorization profiles as often as you wish. </P><P></P><P>Maintenance in transaction SU02 or generation from transaction PFCG (profile generator for role maintenance). </P><P></P><P>&lt;b&gt;User Master Record &lt;/b&gt;</P><P>The existence of a user master record is a prerequisite for logon to an SAP system. The master record determines which actions a user is allowed to execute and which authorizations they are assigned. Default settings, such as the format in which decimal places are displayed in lists, are also stored in the user master record. An authorization profile can be assigned to users as often as you wish. </P><P></P><P>Maintenance in transaction SU01.</P><P></P><P>Hope this helps</P><P>Regards</P><P>Amit</P></BODY></HTML> Tue, 06 Dec 2005 09:10:22 GMT https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097290#M102463 Former Member 2005-12-06T09:10:22Z https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097291#M102464 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P> amit i added that authorized object into the role and i generated that role. Then other than me able to access that field. </P><P></P><P>rgds</P><P>p.kp</P></BODY></HTML> Tue, 06 Dec 2005 09:34:10 GMT https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097291#M102464 Former Member 2005-12-06T09:34:10Z https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097292#M102465 <HTML><HEAD></HEAD><BODY><P>Hi again,</P><P></P><P>1. well, it depends </P><P> to which which users</P><P> this Role has been assigned to.</P><P></P><P> This information is available in the same tcode </P><P> PFCG.</P><P> </P><P></P><P>Regards,</P><P>Amit M.</P></BODY></HTML> Tue, 06 Dec 2005 09:38:32 GMT https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097292#M102465 Former Member 2005-12-06T09:38:32Z https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097293#M102466 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P> I created authorization object zemp and added the dataelement for that empno. And i added </P><P></P><P>AUTHORITY-CHECK OBJECT 'ZEMP'</P><P> ID 'EMPNO' FIELD A.</P><P></P><P> IF SY-SUBRC &lt;&gt; 0.</P><P> MESSAGE E000(ZEN).</P><P> ENDIF.</P><P></P><P>But for what field values i can restrict the user and how can i add those restricted values to that object.</P><P></P><P>rgds</P><P>p.kp</P></BODY></HTML> Tue, 06 Dec 2005 09:54:37 GMT https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097293#M102466 Former Member 2005-12-06T09:54:37Z https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097294#M102467 <HTML><HEAD></HEAD><BODY><P>Hi again,</P><P></P><P></P><P>1. use tcode PFCG</P><P> to create/modify role</P><P></P><P>2. In that there is one tab - AUTHORIZATIONS.</P><P></P><P>3. In this tab, at below,</P><P> there is a Display Button</P><P> Click That.</P><P></P><P>4. A new screen will come.</P><P></P><P>5. From this screen u can ADD the authorisation object.</P><P>6. When adding, it will also ask</P><P> the Values of the respective fields,</P><P> for which the user needs to be given authorisation.</P><P></P><P> eg. for field BUKRS, it will ask</P><P> 1000, 1100, etc.</P><P></P><P>-</P><HR originaltext="---------------------------------------" /><P></P><P>7 In your program u can restrict the user</P><P> only by checking the value of that field.</P><P></P><P> Authority-check.</P><P> eg user has entered 1100 in bUKRS,</P><P> and he does not have right for 1100, </P><P> sy-subrc &lt;&gt; 0,</P><P> check here, and proceed accordingly.</P><P></P><P>8. u can give warning/error message etc.</P><P>9. I still feel, that basis team might help</P><P> u with PFCG tcode</P><P> (bcos it is their daily routine job)</P><P></P><P>Hope it helps.</P><P>regards,</P><P>amit m.</P></BODY></HTML> Tue, 06 Dec 2005 10:06:10 GMT https://community.sap.com/t5/application-development-and-automation-discussions/re-authorization-object/m-p/1097294#M102467 Former Member 2005-12-06T10:06:10Z