https://community.sap.com/t5/application-development-and-automation-discussions/bi-authorization-issue/m-p/8230291#M1629159 <HTML><HEAD></HEAD><BODY><P>Hi Experts,</P><P></P><P>I have issue with BI authorizations.</P><P></P><P>I have created a analysis auth in which I have included below objects:</P><P>0TCAACTVT</P><P>0TCAIPROV</P><P>0TCAKYFNM</P><P>0TCAVALID</P><P>ZCUSNUM</P><P>ZDELDATE</P><P>ZMNUM</P><P>ZVNUM</P><P></P><P>and below is the rsecadmin log. Request you to kindy review it and let me know the solution.</P><P></P><P></P><P>Following Set Is Checked Comparison with Following Authorized Set Result Remaining Set </P><P>Characteristic Content in SQL Format </P><P>ZMNUM</P><P>0TCAACTVT</P><P></P><P>0TCAACTVT = '03' </P><P>AND ZMNUM LIKE * </P><P> </P><P> </P><P> Characteristic Content in SQL Format </P><P>0TCAACTVT I EQ 03 </P><P> </P><P>ZMNUM I EQ M006 </P><P> </P><P> </P><P> Partially or Fully Authorized (Intersection) Characteristic Content in SQL Format </P><P></P><P>ZMNUM </P><P>0TCAACTVT </P><P> NOT ZMNUM = 'M006' </P><P>AND 0TCAACTVT = '03' </P><P> </P><P>Value selection partially authorized. Check of remainder at end </P><P></P><P></P><P>Following Set Is Checked Comparison with Following Authorized Set Result Remaining Set </P><P></P><P>Characteristic Content in SQL Format </P><P>ZMNUM </P><P>0TCAACTVT </P><P> NOT ZMNUM = 'M006' </P><P>AND 0TCAACTVT = '03' </P><P> </P><P> </P><P> Characteristic Content in SQL Format </P><P>0TCAACTVT I EQ 03 </P><P> </P><P>ZMNUM I EQ M006 </P><P> </P><P> </P><P> Not Authorized </P><P> </P><P>All Authorizations Tested </P><P> Message EYE007: You do not have sufficient authorization </P><P></P><P> No Sufficient Authorization for This Subselection (SUBNR) </P><P>Following CHANMIDs Are Affected: </P><P>246 ( ZMNUM ) </P><P> Authorization Check Complete </P><P></P><P>Thanks,</P><P>Raj</P></BODY></HTML> Tue, 27 Sep 2011 11:18:32 GMT Former Member 2011-09-27T11:18:32Z https://community.sap.com/t5/application-development-and-automation-discussions/bi-authorization-issue/m-p/8230291#M1629159 <HTML><HEAD></HEAD><BODY><P>Hi Experts,</P><P></P><P>I have issue with BI authorizations.</P><P></P><P>I have created a analysis auth in which I have included below objects:</P><P>0TCAACTVT</P><P>0TCAIPROV</P><P>0TCAKYFNM</P><P>0TCAVALID</P><P>ZCUSNUM</P><P>ZDELDATE</P><P>ZMNUM</P><P>ZVNUM</P><P></P><P>and below is the rsecadmin log. Request you to kindy review it and let me know the solution.</P><P></P><P></P><P>Following Set Is Checked Comparison with Following Authorized Set Result Remaining Set </P><P>Characteristic Content in SQL Format </P><P>ZMNUM</P><P>0TCAACTVT</P><P></P><P>0TCAACTVT = '03' </P><P>AND ZMNUM LIKE * </P><P> </P><P> </P><P> Characteristic Content in SQL Format </P><P>0TCAACTVT I EQ 03 </P><P> </P><P>ZMNUM I EQ M006 </P><P> </P><P> </P><P> Partially or Fully Authorized (Intersection) Characteristic Content in SQL Format </P><P></P><P>ZMNUM </P><P>0TCAACTVT </P><P> NOT ZMNUM = 'M006' </P><P>AND 0TCAACTVT = '03' </P><P> </P><P>Value selection partially authorized. Check of remainder at end </P><P></P><P></P><P>Following Set Is Checked Comparison with Following Authorized Set Result Remaining Set </P><P></P><P>Characteristic Content in SQL Format </P><P>ZMNUM </P><P>0TCAACTVT </P><P> NOT ZMNUM = 'M006' </P><P>AND 0TCAACTVT = '03' </P><P> </P><P> </P><P> Characteristic Content in SQL Format </P><P>0TCAACTVT I EQ 03 </P><P> </P><P>ZMNUM I EQ M006 </P><P> </P><P> </P><P> Not Authorized </P><P> </P><P>All Authorizations Tested </P><P> Message EYE007: You do not have sufficient authorization </P><P></P><P> No Sufficient Authorization for This Subselection (SUBNR) </P><P>Following CHANMIDs Are Affected: </P><P>246 ( ZMNUM ) </P><P> Authorization Check Complete </P><P></P><P>Thanks,</P><P>Raj</P></BODY></HTML> Tue, 27 Sep 2011 11:18:32 GMT https://community.sap.com/t5/application-development-and-automation-discussions/bi-authorization-issue/m-p/8230291#M1629159 Former Member 2011-09-27T11:18:32Z https://community.sap.com/t5/application-development-and-automation-discussions/bi-authorization-issue/m-p/8230292#M1629160 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Seems like your user is running the query with no input for ZMNUM in the query and hence it is checking for a "*" value.</P><P>In the trace it shows part of authorization check for ZMNUM satisfied by value M006 (since it is covered by '<STRONG>' value ) but second part of authorization check which is ZMNUM= '</STRONG>' minus M006 (anything other than M006 which are covered by '*' value) is not authorized since user's analysis authorization just has value M006. Hence following the 'All or none' rule, authorization check on characteristic ZMNUM fails as a whole.</P><P></P><P>In case you want to give user access to all values of ZMNUM which are assigned in the user's Analysis authorization, please have your BI guys add an authorization type variable in the query for characteristics ZMNUM so as to automatically pickup the input values from user's assigned Analysis authorization. </P><P></P><P>Hope this helps!</P><P></P><P>Thanks,</P><P>Sandipan</P><P></P><P>Edited by: Sandipan Choudhury on Sep 28, 2011 11:03 AM</P></BODY></HTML> Wed, 28 Sep 2011 05:32:45 GMT https://community.sap.com/t5/application-development-and-automation-discussions/bi-authorization-issue/m-p/8230292#M1629160 Former Member 2011-09-28T05:32:45Z