https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/13599557#M2026444 <P>I am also following this post!&nbsp;</P> Thu, 08 Feb 2024 14:41:16 GMT CameliaLo 2024-02-08T14:41:16Z https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/9078844#M1704143 <HTML><HEAD></HEAD><BODY><P class="yiv1857203871MsoNormal" style="text-align: left;">Hello everyone!</P><P class="yiv1857203871MsoNormal" style="text-align: left;">I have a question about bd87 transaction code.</P><P class="yiv1857203871MsoNormal" style="text-align: left;">I need to set BD87 to&nbsp; access only&nbsp; one specific IDoc. S_IDOCMONI&nbsp; authorization object should be able to do this , but in my case this is not the solution- the users still have access to all IDOCS.&nbsp; </P><P class="yiv1857203871MsoNormal" style="text-align: left;">By the authorization trace I've done , I found out that&nbsp; S_IDOCMONI does not checked at all , the only object checked is&nbsp; S_TCODE.<BR />I also check the Status in SU24 and its defined well:</P><P class="yiv1857203871MsoNormal" style="text-align: left;">object "Proposal" (=Yes) and "Check Indicator" (=Check)</P><P class="yiv1857203871MsoNormal" style="text-align: left;">Do you have any idea why the restriction not working , could it be something else besides authority check failure in the program ?</P></BODY></HTML> Wed, 24 Oct 2012 10:26:47 GMT https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/9078844#M1704143 Former Member 2012-10-24T10:26:47Z https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/9078845#M1704144 <HTML><HEAD></HEAD><BODY><P>Which release / SP are you on?</P><P></P><P>Which type of S_IDOCDEFT authorizations to the users have?</P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Wed, 24 Oct 2012 20:21:07 GMT https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/9078845#M1704144 Former Member 2012-10-24T20:21:07Z https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/9078846#M1704145 <HTML><HEAD></HEAD><BODY><P>Hi Julia,</P><P></P><P>&nbsp; </P><P>In fact there is currently no 'process' authority-check implemented in BD87. But a development request for this functionality exists already for future releases.</P><P></P><P>if users should be able to display idocs only, BD87 shall not be granted, but only WE02.</P><P>In BD87 the current implementation of the authority check is made in a way that you are allowed to process IDocs only if you have the authorization to display the IDoc. The concept behind is that if you are able to see the application data you should be able to process the IDoc. For the inbound process you have the possibility to remove the authorization to process the application data from the user profile. This way the IDoc will go into error status and can be processed later on by a user with sufficient authorizations.</P><P>But as soon the user has display auths for the idoc and s-tcode bd87, he will be able to process the idoc.</P><P></P><P>see also SAP note 1269516</P><P><BR />Try this link if it helps you.</P><P></P><P><A _jive_internal="true" href="https://answers.sap.com/thread/3175859">http://scn.sap.com/thread/3175859</A></P><P><BR />Thanks,</P><P>VarunJain</P></BODY></HTML> Wed, 24 Oct 2012 20:22:56 GMT https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/9078846#M1704145 Former Member 2012-10-24T20:22:56Z https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/13599557#M2026444 <P>I am also following this post!&nbsp;</P> Thu, 08 Feb 2024 14:41:16 GMT https://community.sap.com/t5/application-development-and-automation-discussions/bd87-authorization-check/m-p/13599557#M2026444 CameliaLo 2024-02-08T14:41:16Z