https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019474#M1806346 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Please check fucntion module "AUTHORITY_CHECK".</P><P></P><P>Thanks &amp; Regards,</P><P>Akshay Ruia</P></BODY></HTML> Fri, 17 Jan 2014 04:58:58 GMT Former Member 2014-01-17T04:58:58Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019470#M1806342 <HTML><HEAD></HEAD><BODY><P>Hi, i hope i can explain what i need.</P><P></P><P>There are some standard reports that filter results by the authorization objects assigned to a specific user.</P><P></P><P>I've been asked to develop a report where i can filter what Dom. Sales Org, Direct Sales, Product Division can see the user depending his/her authorization objects, is there a way i can ask with a function or something, bring me all Product Divisions authorized for this user?</P><P></P><P>Maybe i can find info in SCN but i dont know how to search for this.</P><P></P><P>Thank you for any help.</P></BODY></HTML> Thu, 16 Jan 2014 23:46:08 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019470#M1806342 Former Member 2014-01-16T23:46:08Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019471#M1806343 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Is it related to ACE configurations in CRM. It can be done via ACE usages. Check the below links to get started.</P><P></P><P><A __default_attr="44675" __jive_macro_name="blogpost" class="jive_macro jive_macro_blogpost" data-orig-content="Configuration &amp;amp; Implementation of CRM Access Control Engine (ACE)-Part 1" href="https://community.sap.com/" modifiedtitle="true" title="Configuration &amp;amp; Implementation of CRM Access Control Engine (ACE)-Part 1"></A></P><P></P><P><A __default_attr="44729" __jive_macro_name="blogpost" class="jive_macro jive_macro_blogpost" data-orig-content="Configuration &amp;amp; Implementation of CRM Access Control Engine (ACE)-Part 2" href="https://community.sap.com/" modifiedtitle="true" title="Configuration &amp;amp; Implementation of CRM Access Control Engine (ACE)-Part 2"></A></P><P></P><P>Also check the SAP generic Auth. Object S_TABU_LIN, This is used to filter the query results based on any organizational unit defined in customizing. You functional consultant would give you a good insight about its usage.</P><P></P><P>Also check the SAP help link below:</P><P></P><P><A href="http://help.sap.com/saphelp_erp60_sp/helpdata/en/6d/56cdd3edabc14ebd1bc84dae20dec8/content.htm" title="http://help.sap.com/saphelp_erp60_sp/helpdata/en/6d/56cdd3edabc14ebd1bc84dae20dec8/content.htm">http://help.sap.com/saphelp_erp60_sp/helpdata/en/6d/56cdd3edabc14ebd1bc84dae20dec8/content.htm</A></P><P></P><P>Cheers,</P><P>Arindam</P></BODY></HTML> Fri, 17 Jan 2014 00:45:59 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019471#M1806343 arindam_m 2014-01-17T00:45:59Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019472#M1806344 <HTML><HEAD></HEAD><BODY><P>I think you looking for this </P><P></P><P> AUTHORITY-<SPAN class="L1S52">CHECK</SPAN> OBJECT <SPAN class="L1S33">'V_VBAK_VKO'</SPAN></P><P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <SPAN class="L1S52">ID</SPAN> <SPAN class="L1S33">'VKORG'</SPAN> <SPAN class="L1S52">FIELD</SPAN> itab-vkorg</P><P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <SPAN class="L1S52">ID</SPAN> <SPAN class="L1S33">'VTWEG'</SPAN> <SPAN class="L1S52">FIELD</SPAN> itab-vtweg</P><P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <SPAN class="L1S52">ID</SPAN> <SPAN class="L1S33">'SPART'</SPAN> <SPAN class="L1S52">FIELD</SPAN> itab-spart</P><P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <SPAN class="L1S52">ID</SPAN> <SPAN class="L1S33">'ACTVT'</SPAN> <SPAN class="L1S52">FIELD</SPAN> <SPAN class="L1S33">'03'</SPAN>.</P></BODY></HTML> Fri, 17 Jan 2014 00:48:53 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019472#M1806344 former_member186413 2014-01-17T00:48:53Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019473#M1806345 <HTML><HEAD></HEAD><BODY><P>hi Gabriel</P><P>i don`t konw whether there are a function can get the all product divisions realated this user.</P><P>but you can using @Hai Wang mentioned statement to check. you need create a authority object(SU21) with those four field, Dom. Sales Org, Direct Sales, Product Division.</P><P>then add this object to role(PFCG), in the profile, you can add some value which is this kind of role can validated. And assign this role to user. in your program, using above statement to check.</P><P>Let`s say, you add value 1,2,3 when maintaince the role.</P><P>when using authority-check object 'XXX'</P><P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; id 'field1' field '4'.</P><P>the sy-subrc will NE 0. beacuse '4' is not maintaince in your role.</P><P></P><P>some technical knowledge refer this link:<A href="http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c?QuickLink=index&amp;overridelayout=true&amp;5003637386464">http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c?QuickLink=index&amp;overridelayout=true&amp;5003637386464</A></P><P></P><P>regards,</P><P>Archer</P></BODY></HTML> Fri, 17 Jan 2014 02:42:05 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019473#M1806345 Former Member 2014-01-17T02:42:05Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019474#M1806346 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Please check fucntion module "AUTHORITY_CHECK".</P><P></P><P>Thanks &amp; Regards,</P><P>Akshay Ruia</P></BODY></HTML> Fri, 17 Jan 2014 04:58:58 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019474#M1806346 Former Member 2014-01-17T04:58:58Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019475#M1806347 <HTML><HEAD></HEAD><BODY><P>Hi Gabriel. You can use FM&nbsp; <STRONG>SUSR_USER_AUTH_FOR_OBJ_GET</STRONG>. You pass the user and the auth object, and it returns a table with all fields and it's possible values by role.</P><P></P><P>Greetings</P><P></P><P>Jesus</P></BODY></HTML> Fri, 17 Jan 2014 15:21:42 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object-values/m-p/10019475#M1806347 Former Member 2014-01-17T15:21:42Z