cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Authorization checked for infoObjects even though not relevant to report

Go to solution
Former Member

on ‎09-18-2008 7:52 AM

0 Kudos

Hello guys,

I am facing a problem in BI 7.0 authorization checks.

For a given report the BI team has placed a restriction in the query only for infoObject 0Comp_code (company code) and 0SOLD_TO (sold to party). Accordingly i have created authorization in RSECADMIN and assigned to role--> user.

But when the user runs the report, he gets as authorization error and during analysis in RSECADMIN i see that "list of Authorization relevant charecteristics(infoObjects) for info provider xxxx" contain other infoObjects as well.

Is it a case where infoObjects can be made authorization relevant for the whole info provider eg-ZSD_M42" (where this is a multi provider)apart from being checked for specific reports eg- ZSD_M42_Q0001?

How do i get around this problem?

Regards,

Prashant

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎09-18-2008 8:00 AM
0 Kudos

Make sure that your AA Object contains all the authorization relevant characteristics of the infoprovider on which the query is ran. Since BI follows All or None principle.

Just to give it a try, add the missing auth relevant characteristics with value * and try to run the query.

Regards,

Zaheer

Show replies
Show replies
Former Member
‎09-18-2008 9:06 AM
0 Kudos

So, Zaheer, does this mean that authorization relevant charecteristics are marked on the info provider as a whole.

This would mean that for query reports which run for a given info provider will need to have authorization for an infoObject even though it is not relevant to that particular Query report.

Is there no work around?

Regards

Prashant

Former Member
‎09-18-2008 1:50 PM
0 Kudos

Yes, you got it right. And depending on your requirements you can restrict the auth relevant characteristics.

So, when a query is fired at a infoprovider, a check is performed for all the auth relevant characteristics of that infoprovider with what user has (via AA Objects). If user lacks any of it, a authorization error is generated.

So you need to make sure that all auth relevant characteristics of infoproviders on which query is fired are included in AA object for query to run sucessfully

Regards,

Zaheer

Answers (1)

Answers (1)

Former Member
‎09-18-2008 6:00 PM
0 Kudos

Hi Prashanth,

What Zaheer said was exactly correct.Make sure all the Auth relevant Chaaracteristics of an Infoprovider are properly authorized through your Analysis Authorization.Suppose if you don't need security on other Characteristics of an InfoProvider give * in your AA which will byepass check on that particular Auth relevant Characteristics..

More over,See to that all the key figures are properly authorized as all the keyfigures are by default auth relevant in BI.

Cheers,,

Ramkumar C

Show replies
Show replies
Ask a Question