Community
Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

Does SAP direct input programs have authorization checks built-in?

Go to solution
Former Member

‎2007 Apr 24 10:11 AM

0 Likes
801

Can anyone advise if the SAP direct input programs eg. RFBIBL00, RMDATIND, RCCLBI03, RM60IN00, RVINVB10 etc. have authorization checking features?

In transaction BMV0, there is a value for User Name. If the user executes the direct input job from here, but uses a different User Name in the job definition in BMV0, does that mean that the authorization check is done against the User Name maintained instead?

Kindly advise asap, thanks.

1 ACCEPTED SOLUTION
Read only

Go to solution
Former Member

‎2007 Apr 24 10:12 AM

0 Likes
655

yeah.

Document Creator will be the user who is running the job.

If he/she dont have authorizations to create Documents then SAP will stop him.

Regards

Prabhu

5 REPLIES 5
Read only

Go to solution
Former Member

‎2007 Apr 24 10:12 AM

0 Likes
656

yeah.

Document Creator will be the user who is running the job.

If he/she dont have authorizations to create Documents then SAP will stop him.

Regards

Prabhu

Read only

Go to solution
Former Member

‎2007 Apr 24 10:25 AM

0 Likes
655

How about the BMVO transaction? Will the authorization check be done against the 'User Name' maintained in the job definition?

Should we allow users to have access to BMV0 in this case? is there any risk that the users will upload data via another person's user ID in this case?

Kindly advise, thanks.

Read only

Go to solution
Former Member
In response to Former Member

‎2007 Apr 24 10:28 AM

0 Likes
655

Hi Li,

This is what the SAP Doucmentation says about the USer name that is maintained in BMV0 transaction.

<i><b>" User name in user master record

Background processing takes place under this user name. This person

needs to have the application-specific authorizations necessary for

running the direct input job (for example, all material master

authorizations).

If you do not enter a name, the job will run under the user name of the

person scheduling it. "</b></i>

Regards,

Ravi

Read only

Go to solution
Former Member

‎2007 Apr 24 10:41 AM

0 Likes
655

thanks Ravi.

any suggestion on how we should handle this - we want to allow the users to perform the data upload (eg. material master) via the standard direct input program in LSMW, but we also want to ensure that they can only upload the data that they are authorized for?

if we grant them BMVO access, they can potentially upload the data under another 'User Name' right? If we block their access to BMV0, they can only run the direct input program online but I am not sure whether this is efficient for actual upload (with big volume of data)?

any other suggestion/advise is most appreciated. thanks.

Read only

Go to solution
Former Member

‎2007 Apr 26 6:52 AM

0 Likes
655

Anyone can help?

Also, there is another direct input program used to upload texts (/SAPDMC/SAP_LSMW_IMPORT_TEXTS) but it doesn't seem to have the authorization check. Can anyone verify this?