https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191670#M1519921 <HTML><HEAD></HEAD><BODY><P>Could you give me specifics for restricting accounts also. I am new at this, and I have never worked with SU24</P></BODY></HTML> Mon, 23 Aug 2010 19:16:24 GMT john_pietrowski2 2010-08-23T19:16:24Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191666#M1519917 <HTML><HEAD></HEAD><BODY><P>I am trying to create a role the only contains FAGLB03 and I would like to be able to restrict which accounts and comany(s) the user can see. When I create the role there are no authorization objects associated with FAGLB03 so I cannot restrict it. Is it possible to do this, and if so how?</P></BODY></HTML> Mon, 23 Aug 2010 18:16:31 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191666#M1519917 john_pietrowski2 2010-08-23T18:16:31Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191667#M1519918 <HTML><HEAD></HEAD><BODY><P>Hi John,</P><P></P><P></P><P></P><P>FAGLB03 transaction is same as FS10N, Add FS10N instead of FAGLB03.</P><P></P><P></P><P></P><P>Thanks,</P><P>SS</P><P></P><P>Edited by: sun on Aug 23, 2010 8:57 PM</P></BODY></HTML> Mon, 23 Aug 2010 18:57:33 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191667#M1519918 Sri_S1 2010-08-23T18:57:33Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191668#M1519919 <HTML><HEAD></HEAD><BODY><P>Hi John,</P><P></P><P></P><P>you need to maintain Values in SU24 , if you want to see them inside the role.</P><P></P><P>Thanks,</P><P>SS</P></BODY></HTML> Mon, 23 Aug 2010 19:05:43 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191668#M1519919 Sri_S1 2010-08-23T19:05:43Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191669#M1519920 <HTML><HEAD></HEAD><BODY><P>this is great, but it only allows me to restrict by company, so I am half way there.</P></BODY></HTML> Mon, 23 Aug 2010 19:13:23 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191669#M1519920 john_pietrowski2 2010-08-23T19:13:23Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191670#M1519921 <HTML><HEAD></HEAD><BODY><P>Could you give me specifics for restricting accounts also. I am new at this, and I have never worked with SU24</P></BODY></HTML> Mon, 23 Aug 2010 19:16:24 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191670#M1519921 john_pietrowski2 2010-08-23T19:16:24Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191671#M1519922 <HTML><HEAD></HEAD><BODY><P>Hi John,</P><P></P><P></P><P></P><P>Go to SU24 and type in transaction FS10N and activate the ones you need. inorder to know what needs to be activated run the transaction and see what object it is checking and activate those in SU24.</P><P></P><P></P><P></P><P>Thanks,</P><P>SS</P></BODY></HTML> Mon, 23 Aug 2010 19:24:54 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191671#M1519922 Sri_S1 2010-08-23T19:24:54Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191672#M1519923 <HTML><HEAD></HEAD><BODY><P>Hi John,</P><P></P><P></P><P>go to"A collection of threads: FAQ's, intros and memorable discussions " in this forum and you will find good documentation on SU24</P><P></P><P></P><P>Thanks,</P><P>SS</P></BODY></HTML> Mon, 23 Aug 2010 19:27:35 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191672#M1519923 Sri_S1 2010-08-23T19:27:35Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191673#M1519924 <HTML><HEAD></HEAD><BODY><P>Enable the below objects for company code related fields</P><P> in SU24 for transaction FAGLB03</P><P></P><P></P><P>F_BKPF_BUK </P><P>F_SKA1_BUK</P><P></P><P>also follow the instruction regarding how to use SU24, as posted by others</P></BODY></HTML> Mon, 23 Aug 2010 20:05:51 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191673#M1519924 Former Member 2010-08-23T20:05:51Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191674#M1519925 <HTML><HEAD></HEAD><BODY><P>Note that F_SKA1_BUK (and more likely F_BKPF_BES in this case) is only exclusive if you have protected the master record.</P><P></P><P>If you have not, then it is an "optional" object as documented in SU21 - the check is suppressed.</P><P></P><P>So, the intention is to protect accounts at the master record level and only then can you grant access selectively.</P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Mon, 23 Aug 2010 21:11:50 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191674#M1519925 Former Member 2010-08-23T21:11:50Z https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191675#M1519926 <HTML><HEAD></HEAD><BODY><P>Also note that PFCG recognized Su24 proposals of parameter transactions. If not found in the calling tcode, the parameterized tcode will be evaluated for proposals.</P><P></P><P>So you need to make a decision here as well (from the view of the role build).</P><P></P><P>It is an art form... <SPAN __jive_emoticon_name="wink"></SPAN></P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Mon, 23 Aug 2010 21:20:28 GMT https://community.sap.com/t5/application-development-and-automation-discussions/role-authorization-for-faglb03/m-p/7191675#M1519926 Former Member 2010-08-23T21:20:28Z