https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177365#M124653 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>First you need to create Object class in TC SU21(eg.ZCLASS). Once created, you create an Authorization object(ZOBJECT) in this class. Now fill some description for this.</P><P></P><P>Now you need to include fields in this object. Goto Authorization fields tab and select fields you want to use to check authorization(In this case ZZCUSTTYPE). Once done, save it and generate this. Now you need to use this object(may be in your program or any transaction)</P><P></P><P> AUTHORITY-CHECK OBJECT 'ZSIMINV'</P><P> ID 'ZZCUSTYPE' FIELD 'ABCD'.</P><P></P><P>Now you need to ask basis security team to create profiles and roles for this Authrization object for only those who are authorized to process. For eg. if you need authorization to process for customer type ABCD(eg.), then you need to have this type included in your user roles and profiles.</P><P></P><P>Hope this helps you</P><P>Vamsi</P></BODY></HTML> Wed, 04 Jan 2006 04:55:15 GMT Former Member 2006-01-04T04:55:15Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177363#M124651 <HTML><HEAD></HEAD><BODY><P>Hi everyone,</P><P> i need to create a new authorisation field(zzcusttype) and add the field to new authorisation object(zzcusttype).</P><P> Could someone tell me how to create a authorisation object.For that object i need to add a field.</P><P></P><P> many thanks</P><P> Kesirahul</P></BODY></HTML> Wed, 04 Jan 2006 02:05:10 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177363#M124651 Former Member 2006-01-04T02:05:10Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177364#M124652 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>check this link out..</P><P></P><P><A href="http://help.sap.com/saphelp_46c/helpdata/en/52/67167f439b11d1896f0000e8322d00/frameset.htm" target="test_blank">http://help.sap.com/saphelp_46c/helpdata/en/52/67167f439b11d1896f0000e8322d00/frameset.htm</A></P><P></P><P>Thanks,</P><P>Renjith</P></BODY></HTML> Wed, 04 Jan 2006 02:12:06 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177364#M124652 Former Member 2006-01-04T02:12:06Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177365#M124653 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>First you need to create Object class in TC SU21(eg.ZCLASS). Once created, you create an Authorization object(ZOBJECT) in this class. Now fill some description for this.</P><P></P><P>Now you need to include fields in this object. Goto Authorization fields tab and select fields you want to use to check authorization(In this case ZZCUSTTYPE). Once done, save it and generate this. Now you need to use this object(may be in your program or any transaction)</P><P></P><P> AUTHORITY-CHECK OBJECT 'ZSIMINV'</P><P> ID 'ZZCUSTYPE' FIELD 'ABCD'.</P><P></P><P>Now you need to ask basis security team to create profiles and roles for this Authrization object for only those who are authorized to process. For eg. if you need authorization to process for customer type ABCD(eg.), then you need to have this type included in your user roles and profiles.</P><P></P><P>Hope this helps you</P><P>Vamsi</P></BODY></HTML> Wed, 04 Jan 2006 04:55:15 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177365#M124653 Former Member 2006-01-04T04:55:15Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177366#M124654 <HTML><HEAD></HEAD><BODY><P>hello everyone,</P><P> The authorizations are based for not single but two groups. There are some conditions on which these two groups are presented with a screen ( depending upon authorizations).I have already creted author.object and 2 author.Fields. </P><P>But am bit confused about assigning those filds, so tht the authorizations are worked according to givin conditions.</P><P>Can some one help.</P><P>Regards</P><P>Kesi</P></BODY></HTML> Wed, 04 Jan 2006 22:26:17 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177366#M124654 Former Member 2006-01-04T22:26:17Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177367#M124655 <HTML><HEAD></HEAD><BODY><P>Hi everyone,</P><P> i need to create an authorisation object 'zobjc' for that i need to add a authorization field 'zcusttype'with values 'Telesales and Custops'. and i need to check the authorisation for the values. can someone provide me with a code.</P><P>Authorisation object name - zobjc.</P><P> values - telesales</P><P> custops</P><P></P><P>Authorisation field name - zcusttype</P><P> Actvt.</P><P></P><P>Many thanks</P><P>Kesi</P></BODY></HTML> Wed, 04 Jan 2006 23:42:21 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177367#M124655 Former Member 2006-01-04T23:42:21Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177368#M124656 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Then you just need to ask your Basis or security team to create a Role for the users that are to be restricted to access. Then they need to create a Profile for this role and the Profile should contain the values TELESALES and CUSTOPS.</P><P></P><P>Now you call the auth. object in your program as I said before and pass the value of ZCUSTTYP at runtime(eg: Marketing) to the auth. field. When the Auth. object is executed, the object checks if the profile of the user who is running the program(or transaction) has this value in his profile. If not it fails and SY-SUBRC will not be zero. Now based on SY-SUBRC you can raise appropriate error messages. </P><P></P><P>Vamsi</P></BODY></HTML> Thu, 05 Jan 2006 00:08:38 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177368#M124656 Former Member 2006-01-05T00:08:38Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177369#M124657 <HTML><HEAD></HEAD><BODY><P>Hi vamsi,</P><P> i have created authorisation object(zobj) after that i assigned 2 fields(zzcustype, actvt).i need to assign 2 values(telesales,custops) for the field zzcustype. where should i assign them. could please tell me..</P><P>Thanks </P><P>kesi</P></BODY></HTML> Thu, 05 Jan 2006 05:08:12 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177369#M124657 Former Member 2006-01-05T05:08:12Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177370#M124658 <HTML><HEAD></HEAD><BODY><P>Hi kesi,</P><P></P><P>1. PFCG</P><P> This is the tcode</P><P> for such purpose.</P><P> Your basis team shall help u for this.</P><P></P><P>2. The values we assign to authorisation objects</P><P> are ROLE SPECIFIC.</P><P> Roles are in turn assigned to users.</P><P></P><P></P><P></P><P>regards,</P><P>amit m.</P></BODY></HTML> Thu, 05 Jan 2006 05:22:29 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177370#M124658 Former Member 2006-01-05T05:22:29Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177371#M124659 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P>Is this what your trying to suggest.</P><P>AUTHORITY-CHECK OBJECT 'zobj'</P><P>ID 'ZZCUSTYPE' FIELD 'custops'.</P><P>Is it correct? if not please let me know how to assign as u said ( code will help!!)</P><P>Auth. object = zobj</P><P>auth. fields = zzcustype &amp; actvt and </P><P>zzcusttype have values 'custops' and telsales.</P></BODY></HTML> Thu, 05 Jan 2006 22:16:42 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-object/m-p/1177371#M124659 Former Member 2006-01-05T22:16:42Z