Upload File

0000522426

4
SAP Note Header Data Symptom Questions on authorizations in the Project System. Other Terms Reason and Prerequisites Solution 1. Transaction codes Transaction codes, for example CJ01 (Create Project) are in general already provided with an authorization. For the display of the checked authorization object and its required settings proceed as follows: l Transaction SM31 with table TSTC l Display l Enter transaction code l Display 2. Time of the authorization check In general, the system already evaluates the respective authorizations when the master data is imported, this means, the system executes for each master data object (for example, project definition, WBS element and so on) an authorization check regarding allowed actions (for example create, change, display and so on). Also when you save, the system executes a final check for created, changed and deleted objects. Only in special circumstances, for example changing the project number for project definition or WBS element, the system executes another explicit authorization check. 3. Point of authorization check These checks are executed centrally in function group CNAU. The following modules are relevant for projects: l CNAU_AUTHORITY_PROJ Authorization check for project definition l CNAU_AUTHORITY_PROJ_MULTI Authorization check for project definitions l CNAU_AUTHORITY_PRPS Authorization check for WBS element l CNAU_AUTHORITY_PRPS_MULTI Authorization check for WBS elements l CNAU_AUTHORITY_PSTX Authorization check for PS text l CNAU_AUTHORITY_PSTX_MULTI Authorization check for PS texts l CNAU_AUTHORITY_TCD Transaction code authorization C_PROJ_TCD l CNAU_AUTHORITY_VERS Authorization check for project version 4. Indicators in the work breakdown structure The following applies for the project definition (in Transaction CJWB): FLG_INPDF = X Authorization for Change Project FLG_OUTDF = X Authorization for Display Project These indicators also control the display/ready for input status of fields on the screen. The following applies for the WBS elements: The current setting of indicator FLG_INPEL (Authorization for Change WBS element) and FLG_OUTDF (Authorization for Display WBS element) in CJWB must not necessarily correspond to the just 522426 - Consulting: Authorizations in the Project System Version 3 Validity: 27.05.2002 - active Language English Released On 27.05.2002 19:44:21 Release Status Released for Customer Component PS Project System Priority Recommendations / Additional Info Category Consulting

Upload: vijay-kumar-hebbal

Post on 18-Aug-2015

227 views

Category:

Documents


0 download

Report

DESCRIPTION

PS authorization

TRANSCRIPT

SAP Note Header Data Symptom Quest i onsonaut hor i zat i onsi nt hePr oj ect Syst em. Other Terms Reason and Prerequisites Solution 1. Tr ansact i oncodes Tr ansact i oncodes, f or exampl eCJ 01( Cr eat ePr oj ect ) ar ei ngener al al r eadypr ovi dedwi t han aut hor i zat i on. For t hedi spl ayof t hecheckedaut hor i zat i onobj ect andi t sr equi r edset t i ngs pr oceedasf ol l ows:l Tr ansact i onSM31wi t ht abl eTSTC l Di spl ay l Ent er t r ansact i oncode l Di spl ay 2. Ti meof t heaut hor i zat i oncheck I ngener al , t hesyst emal r eadyeval uat est her espect i veaut hor i zat i onswhent hemast er dat ai s i mpor t ed, t hi smeans, t hesyst emexecut esf or eachmast er dat aobj ect ( f or exampl e, pr oj ectdef i ni t i on, WBSel ement andsoon) anaut hor i zat i oncheckr egar di ngal l owedact i ons( f or exampl e cr eat e, change, di spl ayandsoon) .Al sowhenyousave, t hesyst emexecut esaf i nal checkf or cr eat ed, changedanddel et edobj ect s.Onl yi nspeci al ci r cumst ances, f or exampl echangi ngt hepr oj ect number f or pr oj ect def i ni t i onorWBSel ement , t hesyst emexecut esanot her expl i ci t aut hor i zat i oncheck.3. Poi nt of aut hor i zat i oncheck Thesechecksar eexecut edcent r al l yi nf unct i ongr oupCNAU. Thef ol l owi ngmodul esar er el evantf or pr oj ect s:l CNAU_AUTHORI TY_PROJ Aut hor i zat i oncheckf or pr oj ect def i ni t i on l CNAU_AUTHORI TY_PROJ _MULTI Aut hor i zat i oncheckf or pr oj ect def i ni t i ons l CNAU_AUTHORI TY_PRPSAut hor i zat i oncheckf or WBSel ementl CNAU_AUTHORI TY_PRPS_MULTI Aut hor i zat i oncheckf or WBSel ement s l CNAU_AUTHORI TY_PSTXAut hor i zat i oncheckf or PSt extl CNAU_AUTHORI TY_PSTX_MULTI Aut hor i zat i oncheckf or PSt ext s l CNAU_AUTHORI TY_TCDTr ansact i oncodeaut hor i zat i onC_PROJ _TCD l CNAU_AUTHORI TY_VERSAut hor i zat i oncheckf or pr oj ect ver si on 4. I ndi cat or si nt hewor kbr eakdownst r uct ur e Thef ol l owi ngappl i esf or t hepr oj ect def i ni t i on( i nTr ansact i onCJ WB) :FLG_INPDF = X Authorization for Change Project FLG_OUTDF = X Authorization for Display Project Thesei ndi cat or sal socont r ol t hedi spl ay/ r eadyf or i nput st at usof f i el dsont hescr een. Thef ol l owi ngappl i esf or t heWBSel ement s:Thecur r ent set t i ngof i ndi cat or FLG_I NPEL( Aut hor i zat i onf or ChangeWBSel ement ) andFLG_OUTDF ( Aut hor i zat i onf or Di spl ayWBSel ement ) i nCJ WBmust not necessar i l ycor r espondt ot hej ust 522426 - Consulting: Authorizations in the Project System Version 3 Validity: 27.05.2002 - active Language English Released On27.05.2002 19:44:21 Release Status Released for Customer ComponentPS Project System PriorityRecommendations / Additional Info CategoryConsulting edi t ed/ sel ect edWBSel ement asbydef i ni t i ont heaut hor i zat i oncancont ai nsever al WBSel ement swi t h di f f er ent set t i ngs. Ther ef or e, t heaut hor i zat i onof ever yi ndi vi dual WBSel ement i sst or edi nbuf f er t abl ePSTABi n Tr ansact i onCJ DW, f i el dsAUTHC( Change) , AUTHD( Di spl ay) , AUT_TRMPL( Pl andat es) , AUT_TRMI S( Conf i r mact ual dat es) , AUT_TRMAZ( Di spl aydat es) . For exampl e, t heycanbedet er mi nedvi aCJ DW_PRPS_GET.Af t er t hef i r st r eadi ngof t hecur r ent WBSel ement i nt hebuf f er t abl e, i ndi cat or sFLG_I NPELand FLG_OUTELar ecur r ent i nCJ WB. Her e, t hesei ndi cat or sal socont r ol t hedi spl ay/ r eadyf or i nput st at usof f i el dsont hescr een. Al so f ol l owi ngact i ons( f or exampl e, assi gni ngPSt ext ) ar echeckedagai nst t heaut hor i zat i onsdet er mi ned her eandar er ef usedwher enecessar y.5. Si mul at i ngmi ssi ngaut hor i zat i on Ami ssi ngaut hor i zat i oncanbesi mul at edbyi ni t i al i zi ngt hecor r espondi ngi ndi cat or at t he appr opr i at epoi nt i nt hedebugger . I naddi t i on- andt hi smet hodi st obepr ef er r ed- t he cor r espondi ngi ndi cat or canal r eadybei ni t i al i zedi nCNAUat t heendof t heaut hor i zat i on checksof t heobj ect i nquest i on. Exampl e: I nCNAU_AUTHORI TY_PRPS_MULTI , t hechangeaut hor i zat i oni sr eset f or t her equi r edWBS el ement byi ni t i al i zi ngi ndi cat or AUTH_ALL_ACTVT- CHANGEbef or et hemovet oT_PRPS_AUTHi nt he debugger . ( Thepr ogr aml i nei nRel ease4. 0i s MOVE- CORRESPONDI NGAUTH_ALL_ACTVTTOT_PRPS_AUTH.I not her r el eases, t hel i necanl ookdi f f er ent , of cour se) .6. Aut hor i zat i ononcust omer - speci f i cscr eens I ngener al , t hef i el dsar edi spl ayedasr eadyf or i nput ont hecust omer - speci f i cscr eens i ndependent of t heaut hor i zat i ons, t het r ansact i ont ype( di spl aymode, changemodeandsoon)andt hesyst emst at us( f or exampl e, l ocked) andt heuser st at us. Her e, ever ycust omer must car r yout appr opr i at echecksi nt hePBOof hi scust omer - speci f i c scr een. TheSAPst andar dPBOmodul eMODI F_PBOf r omf unct i ongr oupCJ WBcanbeusedasa r ef er ence.7. Debuggi ng Thedebugger st opsat suchapoi nt i f abr eakpoi nt wi t hl anguageel ement AUTHORI TY- CHECKi sset .Wi t hsuchabr eakpoi nt i t cangener al l ybecheckedwhet her anexpl i ci t aut hor i zat i oncheckcan beexecut edat al l . I mpor t ant :Const r uct ssuchasCALLTRANSACTI ONor SUBMI Tgener at eanewl ogi cal uni t of wor k( LUW) i nwhi ch t hebr eakpoi nt sf r omt heot her LUWsar enot known.Thet r ansact i onor t her epor t must be' accessed' wi t hsi ngl est epi nt hedebugger . The br eakpoi nt smust cor r espondi ngl ybeset agai ni nt henewLUW.8. Aut hor i zat i onandhi er ar chy I f WBSel ement sandnet wor kact i vi t i esar eassi gnedt oeachot her , nohi er ar chi cal i nher i t ance of t heaut hor i zat i onsoccur s. I not her wor ds: I f auser doesnot haveanychangeaut hor i zat i on f or aWBSel ement , i t cannot besai dwhet her achangeaut hor i zat i onexi st sor not f or t he hi er ar chi cal l ysubor di nat eact i vi t y. Thi sonl ydependsont heaut hor i zat i onswhi chhavebeen assi gnedt ot heuser wi t hr egar dt ot henet wor k. Al sot henet wor kandi t sact i vi t i esar ei n gener al al r eadycheckeddur i ngt hei mpor t of t hemast er dat ai nCNAU( seei nput hel pi n Tr ansact i onSE37f or CNAU_AUTHORI TY*) .9. Aut hor i zat i onobj ect sandpr of i l es I ngener al , anaut hor i zat i oncheckcanonl ybeexecut edagai nst aut hor i zat i onobj ect s. Al l R/ 3 aut hor i zat i onobj ect sar ef oundwi t hTr ansact i onSU03. For t hePr oj ect Syst emt hesear e( t he aut hor i zat i onobj ect smar kedwi t h*ar enot i mpor t ant f or t hewor kbr eakdownst r uct ur e) :l C_AFKO_ACTAct i onsonnet wor kheader l evel * l C_AFKO_DI SNet wor k: MRPgr oup( pl ant ) andt r ansact i ont ype* l C_VERS_ACTAct i onsf or pr oj ect ver si ons l C_AFVG_APLWor kcent er f or net wor kact i vi t i es&act i vi t yel ement s* l C_AFVG_USRUser f i el dsnet wor kact i vi t yandact i vi t yel ement aut hor i zat i ont empl at e* l C_PRPS_USRUser f i el df or WBSel ement saut hor i zat i ont empl at e l C_PRPS_KOKCont r ol l i ngar eaf or WBSel ement s l C_PROJ _KOKCont r ol l i ngar eaf or pr oj ect def i ni t i on l C_PRPS_KSTCost cent er f or WBSel ement s l C_MLST_BGRMi l est one( aut hor i zat i ongr oup)l C_PLKO_PLGMai nt enancepl anner gr oupf or st andar dnet wor k* l C_PRPS_PRCPr of i t cent er f or WBSel ement s l C_PROJ _PRCPr of i t cent er f or pr oj ect def i ni t i on l C_PRPS_ARTPr oj ect t ypesf or WBSel ement s l C_PRPS_VNRPr oj ect manager f or WBSel ement s l C_PROJ _VNRPr oj ect manager f or pr oj ect def i ni t i on l C_SI MU_BGRSi mul at i on( aut hor i zat i ongr oup) * l C_PSTX_ARTText t ypesf or PSt ext s l C_PROJ _TCDTr ansact i on- r el at edaut hor i zat i onspr oj ect syst eml C_AFVG_TYPAct i vi t yt ypesf or net wor kact i vi t i es&act i vi t yel ement s* l C_AFRU_APLConf i r mat i on: Aut hor i zat i onf or act ual wor kcent er * Theaut hor i zat i onobj ect sar egener al l ysel f - expl anat or y. Theexact meani ngof anaut hor i zat i on obj ect andi t scheckedval uescanbedet er mi nedbynavi gat i ngusi ngadoubl e- cl i ck.Exampl e: C_PRPS_KOKchecksagai nst f i el ds' Cont r ol l i ngar ea' and' Act i on' . Her e, act i onsar e, f orexampl e01( cr eat e) , 02( change) and03( di spl ays) . Theaut hor i zat i onsof t heaut hor i zat i onobj ect sar esummar i zedi npr of i l es; t hepr of i l esar egr ouped i ncomposi t epr of i l es. Pr of i l esandcomposi t epr of i l escanal sobecr eat edbyt hePr of i l eGener at or . Pr of i l esandcomposi t epr of i l esar eassi gnedt ot heuser . I f anaut hor i zat i onobj ect i scont ai nedi n sever al pr of i l es, t he' hi gher ' aut hor i zat i oni sused. Exampl e: For obj ect C_PRPS_KOKt heuser hasadi spl ayaut hor i zat i oni npr of i l eAandachange aut hor i zat i oni npr of i l eB; bot hpr of i l esar eassi gnedt ohi m. Thus, t heuser hast hechange aut hor i zat i onf or t her espect i vecont r ol l i ngar ea. Theaut hor i zat i onobj ect spar t i al l yexecut eexpl i ci t checksagai nst i ni t i al val ues, f or exampl e obj ect C_PRPS_VNR. I f onl ypr oj ect manager 00000001i sassi gnedt ot heaut hor i zat i onobj ect andt he cor r espondi ngf i el d' Per sonr esponsi bl e' r emai nsi ni t i al i nt hemast er dat a, t hesyst emi nt er pr et s t hi sasami ssi ngaut hor i zat i on. I f t hi sshoul dbepr event ed, t hei ni t i al val ue( 8bl ankchar act er s)must bei ncl udedf or t heaut hor i zat i onobj ect . I naddi t i on, t hel eadi ngzer osmust bepar t i al l yt akeni nt oaccount . Thef ol l owi ngent r i esmi ght be necessar ydependi ngonwhet her i t i sanumer i cor al phanumer i cf i el d: '00000001' ' 1' '1' and '00000001' I near l yver si onsof t hePr of i l eGener at or , t hesyst empar t i al l ydi dnot bot hgener at i ngt hei ni t i alval ueandt aki ngt hel eadi ngzer osi nt oaccount f or numer i cf i el ds. Then, t hepr of i l esmust be mai nt ai nedmanual l yl at er . I f t hescopeof aut hor i zat i onsi schangedonl i nef or auser , t heuser mi ght havet ol ogonagai n.10. Cr eat evs. changevs. di spl ayaut hor i zat i on I nt hecr eat i oncase, t hecr eat eaut hor i zat i onmust exi st . I nt hechangeor di spl aycase, t he changeor di spl ayaut hor i zat i onmust exi st cor r espondi ngl y. I t i si mpor t ant t or emember t hat t hechangeaut hor i zat i oni snot suf f i ci ent i nt hedi spl aymode andvi cever sa. Wi t ht hi saut hor i zat i onl ogi ci ti s, i npar t i cul ar , not possi bl et of or bi donl ycer t ai nbusi ness act i ons( f or exampl e, t heWBSel ement r el ease) . I nt hesenseof t heabovel ogi c, auser mayr el easeaWBSel ement assoonashehast he aut hor i zat i onf or changi ngt heWBSel ement . Vi cever sa, hemust not change( r el ease) t heWBS el ement i f hedoesnot hasanychangeaut hor i zat i on.11. Aut hor i zat i onchecki nt hest andar dpr oj ectI nt hest andar dpr oj ect , t her ei snosepar at eaut hor i zat i oncheckper desi gn.Asof Rel ease4. 6C, aBAdI can, however , bei mpl ement ed( usi ngNot e523162) i nwhi cht he devel opment of acust omer - speci f i caut hor i zat i onchecki spossi bl ef or obj ect s' St andar dpr oj ectdef i ni t i on' and' St andar dWBSel ement ' wheni mpor t i ngandsavi ngt hedat a. Other Attributes Validity This document is not restricted to a software component or software component version CJ01 HIER MOVE SE37 SM31 SU03Transaction codes References This document refers to: SAP Notes This document is referenced by: SAP Notes (3) 554415 FAQ 2: Authorization check 536428 Composite SAP Note for authorization check in PS 494487 Project System: Consulting notes 494487 Project System: Consulting notes 536428 Composite SAP Note for authorization check in PS 554415 FAQ 2: Authorization check


One Flew Over the Cuckoo's Nest

Iron Mills Essay

Basic Buffer Overflows Explained

How Computer Monitors Work

I Am a Holocaust Denier and I Am Unafraid

Star Wars Prequel Trilogy Trivia (Episodes I-III)

United States Constitution

Disclaimer

Chapter-01

Algorithms

Oedipus The King: The Ideal Tragic Play

18 Tricks to Teach Your Body

Venture Capital

Steve Jobs' Commencement Speech at Stanford

Improve the Color Quality Of Your Monitor

(Tesla) - The Tesla Magnetic Car Engine

Tragic Heroes

Rubik's cube solution

xCDC14a

Chapter 24

The Last Carnival I Ever Saw

Daniel Zanella and Alexander Weygers

Star Wars Trivia!

Introduction to Six Sigma

Chapter 23

The Dutch Republic In International Trade

Plato - Symposium

Acetone Peroxide

Cakes Recipes

Simple Functions in Haskell

Fortran

Heidegger Kritik

Physical Modelling Synthesis Overview

Explore The Levels of Creation

Bodybuilding - The Rock Hard Challenge (Month 1 Training)