on 2009 Sep 08 9:08 AM
Hello.
I want to give authorization to an user for the HR infotypes records only in Create, Display and Delimit. I want to restrict Change and Delete authorizations because History of the employee wonu2019t be maintained.
How to achieve this using HR: Master Data - Extended Check authorization objects.
Note: Since we have to give authorizations based on administrator groups, the master data extended check object is been used.
Authorization Object: P_ORGXX
AUTH. FIELD DESCRIPTION
INFTY Infotype
SUBTY Subtype
AUTHC Authorization level
SACHA Payroll Administrator
SACHP Administrator for HR Master Data
SACHZ Administrator for Time Recording
SBMOD Administrator Group
Thanks for your help.
MCM.
Hi Alembert,
Usually the ACTVT field in an authorization object restricts the action(say create,edit etc).
However for the Authorization object P_ORGXX, we can restrict with the field AUTHC - Authorization level.
M (read with entry helps)
R (read),
S (write locked record; unlock if the last person to change the record is not the current user),
E (write locked record),
D (change lock indicator),
W (write data records)
(all operations).
Please get a role created with the help of your Basis consultant and restrict the value for field AUTHC to "R"
in the auth object P_ORGXX.
Check and let me know if this helps.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
This can be done with help of basis team .
All the best
KRC
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
111 | |
8 | |
8 | |
6 | |
6 | |
5 | |
4 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.