https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044234#M1351320 <HTML><HEAD></HEAD><BODY><P>Hi Venkat,</P><P></P><P>To restrict post access you need to look into the Authorization objects with description starts with "Accounting Document". To be more specific for transaction FB05 (post with clearance) below object with <STRONG>create</STRONG> activity will provide post access to various option (like customer, vendor, G/L Ac, company code etc).</P><P>F_BKPF_BED</P><P>F_BKPF_BEK</P><P>F_BKPF_BES</P><P>F_BKPF_BLA</P><P>F_BKPF_BUK</P><P>F_BKPF_BUP</P><P>F_BKPF_GSB</P><P>F_BKPF_KOA</P><P></P><P>However I would like say one more thing as added information. If your actual requirement is to restrict user from posting but providing access to park then that is not possible from authorization point of view. As providing authorization park is required access to above objects with 01 and 77 activity. So restricting access to 01 activity will automatically restrict access to park. If your requirement does not mix with park then you can go ahead as depicted above. But take of other transactions that may require above objects with 01 activity.</P><P></P><P>Arpan</P></BODY></HTML> Wed, 19 Aug 2009 10:07:07 GMT arpan_paik 2009-08-19T10:07:07Z https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044231#M1351317 <HTML><HEAD></HEAD><BODY><P>How to restrcit Post entry option for Particular trasctions? I have 100 roles with these trasactions.</P><P></P><P>Do we restrcit Auth object level or We will go for individual role and deactivate iption 10:</P><P></P><P>Thanks</P></BODY></HTML> Sun, 09 Aug 2009 11:07:54 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044231#M1351317 Former Member 2009-08-09T11:07:54Z https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044232#M1351318 <HTML><HEAD></HEAD><BODY><P>&gt; How to restrcit Post entry option for Particular trasctions? I have 100 roles with these trasactions.</P><P>Which transactions? We're not psychics here....</P><P></P><P>&gt; Do we restrcit Auth object level or We will go for individual role and deactivate iption 10:</P><P></P><P>What do you mean by restricting "auth object level"? If you want to take rights away from users you'll have to change all roles which hold these rights and ar assigned to those users. If "option 10" is the activity to post then you'll have to take that out of each role.</P></BODY></HTML> Sun, 09 Aug 2009 11:18:29 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044232#M1351318 jurjen_heeck 2009-08-09T11:18:29Z https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044233#M1351319 <HTML><HEAD></HEAD><BODY><P>Check what authorization object is used to do the post entry. </P><P>That can be tracked by the authorization trace in ST01. Make the required change in the particular authorization object for all roles.</P><P></P><P>If their is any specific customized program is available for the required task, that can be changed. (though the change requirement is not too clear to me, but this can be another possible way).</P><P></P><P>Regards,</P><P>Sandip Maiti</P></BODY></HTML> Mon, 17 Aug 2009 15:11:29 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044233#M1351319 Former Member 2009-08-17T15:11:29Z https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044234#M1351320 <HTML><HEAD></HEAD><BODY><P>Hi Venkat,</P><P></P><P>To restrict post access you need to look into the Authorization objects with description starts with "Accounting Document". To be more specific for transaction FB05 (post with clearance) below object with <STRONG>create</STRONG> activity will provide post access to various option (like customer, vendor, G/L Ac, company code etc).</P><P>F_BKPF_BED</P><P>F_BKPF_BEK</P><P>F_BKPF_BES</P><P>F_BKPF_BLA</P><P>F_BKPF_BUK</P><P>F_BKPF_BUP</P><P>F_BKPF_GSB</P><P>F_BKPF_KOA</P><P></P><P>However I would like say one more thing as added information. If your actual requirement is to restrict user from posting but providing access to park then that is not possible from authorization point of view. As providing authorization park is required access to above objects with 01 and 77 activity. So restricting access to 01 activity will automatically restrict access to park. If your requirement does not mix with park then you can go ahead as depicted above. But take of other transactions that may require above objects with 01 activity.</P><P></P><P>Arpan</P></BODY></HTML> Wed, 19 Aug 2009 10:07:07 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restrict-post-entry/m-p/6044234#M1351320 arpan_paik 2009-08-19T10:07:07Z