Community
Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

authorisation check

Former Member

‎2006 Jun 15 11:29 AM

0 Likes
494

To restrict the ability of timesheet users so that they can't book to PM Order Types ZCL1 - ZCL4 a user exit is probably required to check the authorisation object I_AUART before allowing the timesheet to be saved.

The current timesheet role (TIMESHEET_USER) doesn't allow user access to Order Types ZCL1 - ZCL4 however as there is no authority check performed in program SAPLCATS (CAT2), field RAUFNR (Rec. Order) this restriction in the authorisation profile is effectively redundant.

Provided a check can be performed on the value contained within that field and the PM order type it relates to, it could be possible to restrict the standard timesheet users from accidentally booking time to PM orders created under Order Type ZCL1 - ZCL4.

How to achieve this?

2 REPLIES 2
Read only

Former Member

‎2006 Jun 15 11:34 AM

0 Likes
451

check in SU03 list of Autho.Objects , then u have select which one is useful for u.

Regards

Prabhu

Read only

Former Member

‎2006 Jun 15 11:38 AM

0 Likes
451

You can give an authority check in user exit at the beginning of your given object (SAPLCATS). There in the object part you will have to give the condition what you have stated.

Regards,

Subho