https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071170#M728030 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I have told them.Lets see if we find any solution</P><P>Thanks for your help Alex.</P><P></P><P>Thanks</P><P>tajinder</P></BODY></HTML> Wed, 05 Dec 2007 12:32:24 GMT Former Member 2007-12-05T12:32:24Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071161#M728021 <HTML><HEAD></HEAD><BODY><P>Hi all,</P><P></P><P>I want to make a role for finanve dept. In this i want add transaction FMRP_2FMB4002. This runs a report. But i want to restrict access so that user can read only particular commitment item. The auth. object for commitment item is F_FICA_FPG. And it has fields named as 1- Activity , 2 - Auth group of commitment item and 3 - financial management area.</P><P>How to restrict this. Please help</P><P></P><P>Thanks</P></BODY></HTML> Wed, 05 Dec 2007 07:16:30 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071161#M728021 Former Member 2007-12-05T07:16:30Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071162#M728022 <HTML><HEAD></HEAD><BODY><P>Check in SU24 if the object is available in FMRP_2FMB4002</P><P>if not consult an Abaper to add the check in the program.</P></BODY></HTML> Wed, 05 Dec 2007 07:24:46 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071162#M728022 Former Member 2007-12-05T07:24:46Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071163#M728023 <HTML><HEAD></HEAD><BODY><P>Hi Auke,</P><P></P><P>It is there in su24. And it is check/maintain. i tried to add commitment number in the auth groups field and activity is display. But still it is able to see other commitment items. Please advice more.</P><P></P><P>Thanks,</P><P>Tajinder</P></BODY></HTML> Wed, 05 Dec 2007 07:40:56 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071163#M728023 Former Member 2007-12-05T07:40:56Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071164#M728024 <HTML><HEAD></HEAD><BODY><P>Tajinder,</P><P></P><P>Have you ran a trace (ST01) to see if the object is checked when the tx is run?</P></BODY></HTML> Wed, 05 Dec 2007 08:17:47 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071164#M728024 Former Member 2007-12-05T08:17:47Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071165#M728025 <HTML><HEAD></HEAD><BODY><P>Hi Alex,</P><P></P><P>yes i have run trace for auth check.</P><P>this is the trace file data</P><P> Client: 200 User: TEST1234 Transaction START_REPORT Trans ID: 474D28942893008EE1008000C0A8780E </P><P>Work Process 0 PID 0 Date: 05.12.2007 Start: 14:11:11:797.838 Finish: 14:11:11:936.632 </P><P>First Block of Dialog Step Last Block in Dialog Step </P><P>Block Version: 745 No. of Records: 3 File Version: 1 </P><P>hh:mm:ss:ms Type Lasts(us) Object Text </P><P>14:11:11:798 AUTH - - - K_KA_RPT RC=4 CEAPPL=FM;TABLE=IFMEISA;CEREPID=2FMB4002;ACTVT=L0; </P><P>14:11:11:818 AUTH - - - F_FICB_VER RC=0 FM_AUTHACT=03;FM_FIKRS=NDPL;FM_VERSN=000; </P><P>14:11:11:818 AUTH - - - F_FICB_FKR RC=0 FM_AUTHACT=03;FM_FIKRS=NDPL; </P><P></P><P>I had to manually add the auth object K_KA_RPT becoz the transaction was not executing without it.</P><P>I guess others are not relavant.</P><P>I guess i have to make changes in K_KA_RPT. But could not find out</P><P>I have made every other object inactive in the authorization data of role.</P><P>but only above three shown in trace file are active and user is able to see all commitment types.</P><P>please advice.</P><P></P><P>Thanks </P><P>Tajinder</P></BODY></HTML> Wed, 05 Dec 2007 08:47:11 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071165#M728025 Former Member 2007-12-05T08:47:11Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071166#M728026 <HTML><HEAD></HEAD><BODY><P>Hi Tajinder,</P><P></P><P>As I thought, it looks like there is no check on F_FICA_FPG and as a result, currently no way of being able to restrict by that object.</P><P></P><P>I'm not particularly familiar with Funds Management but in a number of situations, if an object is in CM status, it's possible that there is some config option which can enable the check to be activated. I suggest that you speak to your functional team to see if they are aware of any option.</P></BODY></HTML> Wed, 05 Dec 2007 09:15:39 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071166#M728026 Former Member 2007-12-05T09:15:39Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071167#M728027 <HTML><HEAD></HEAD><BODY><P>Hi Alex,</P><P></P><P>for auth object K_KA_RPT its is only check. Should i try changing to CM. Can this help.</P><P>Please advice all.</P><P></P><P>Thanks</P><P>Tajinder</P></BODY></HTML> Wed, 05 Dec 2007 09:51:19 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071167#M728027 Former Member 2007-12-05T09:51:19Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071168#M728028 <HTML><HEAD></HEAD><BODY><P>Please also advice the way to do it</P></BODY></HTML> Wed, 05 Dec 2007 09:53:47 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071168#M728028 Former Member 2007-12-05T09:53:47Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071169#M728029 <HTML><HEAD></HEAD><BODY><P>Hi Tajinder,</P><P></P><P>From your post, the controlling object for commitment item is F_FICA_FPG</P><P></P><P>This is the only check that counts. You said that it is CM in SU24, however we have seen that when you run a trace, object F_FICA_FPG is not picked up. As I suggested before, you should speak to your functional team about this as there may be a way of activating that check.</P><P></P><P>K_KA_RPT is a separate topic, if it is needed to run the transaction then change it to CM - that way you will pull the object into the role whenever you add the transaction.</P></BODY></HTML> Wed, 05 Dec 2007 11:36:31 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071169#M728029 Former Member 2007-12-05T11:36:31Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071170#M728030 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I have told them.Lets see if we find any solution</P><P>Thanks for your help Alex.</P><P></P><P>Thanks</P><P>tajinder</P></BODY></HTML> Wed, 05 Dec 2007 12:32:24 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071170#M728030 Former Member 2007-12-05T12:32:24Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071171#M728031 <HTML><HEAD></HEAD><BODY><P>good luck!</P></BODY></HTML> Wed, 05 Dec 2007 12:33:22 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071171#M728031 Former Member 2007-12-05T12:33:22Z https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071172#M728032 <HTML><HEAD></HEAD><BODY><P>closing the thread</P></BODY></HTML> Mon, 02 Mar 2009 13:38:21 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restricted-access/m-p/3071172#M728032 Former Member 2009-03-02T13:38:21Z