Org. level in PFCG

Question: Hello,

I want to assign roles for users in PFCG. However, when I restrict the plant in org. level, it doesn't work for those ABAP reports (Z reports) which created by users. It only work for standard SAP functions. What I have missed in PFCG or created reports? Please help!

Many thanks.

Answer:
The developers have probably failed to put authorisation checks into the custom reports.

Nothing you do in PFCG will change this. PFCG merely attempts to recreate the checks made in the programs.

Answer:
Thanks Al.

What can I do on the next development of custom made reports to get such result?

Answer:
How to put the authorisation checks in the reports such as plant?

Answer:
Thanks Al.

What can I do on the next development of custom made reports to get such result?

Your developers should know how to do this. If not, they should be sacked.

They need to incorporate AUTHORITY-CHECK statements in their code to check an authorisation object related to plant. Depending on the requirements it could return specific line items for certain plants or it could not return any values at all depending on your requirements

Answer:
Many of the "z" reports are versions of already existing SAP reports that are based on a Logical Data Base which for many has authority checking build in. Your ABAPer can also reference the LDB and have the checking done for them, then tailor the output.

No comments:

topics