Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Restricting Spool in SM37

Go to solution
Former Member

‎01-28-2009 10:32 AM

0 Kudos

Hi All,

I would like to know if a user can be restricted to view spool created by his/her own jobs by including S_ADMI_FCD, in auth profile. Can some one help me with this, i got an requirement where i need to restrict the user to view her own spool in SM37, but currently S_ADMI_FCD is disabled and she is getting an error,

"No authorisation to select from spool request"

Your answers are much appreciated.

Regards,

Sandhya

1 ACCEPTED SOLUTION

Go to solution
Private_Member_119218
Active Participant

‎01-28-2009 11:16 AM

0 Kudos

<b>Note: Spool requests are created under the username defined in background job step and can be different from the user scheduling the job.</b>

With that in mind, I can think of two cases:

(a) Assuming the username defined in background job step is equal to the user scheduling the job, and you want the scheduling user to be able to view the spool for his/her own background jobs; then the user should have authorizations for auth. obj. 'S_ADMI_FCD' with |S_ADMI_FCD=ST0R|.

(b) Assuming the username defined in background job step is different from the user scheduling the job but you want the scheduling user to be able to view the spool anyways; then the user should have authorizations described in (a) + auth. obj. 'S_SPO_ACT' with |SPOACTION=BASE, DISP; SPOAUTH=<USERNAME>|, where <USERNAME> is the username defined in background job step.

There are other possible SPOACTION values that you might want to assign. See the object documentation for these.

3 REPLIES 3

Go to solution
Private_Member_119218
Active Participant

‎01-28-2009 11:16 AM

0 Kudos

<b>Note: Spool requests are created under the username defined in background job step and can be different from the user scheduling the job.</b>

With that in mind, I can think of two cases:

(a) Assuming the username defined in background job step is equal to the user scheduling the job, and you want the scheduling user to be able to view the spool for his/her own background jobs; then the user should have authorizations for auth. obj. 'S_ADMI_FCD' with |S_ADMI_FCD=ST0R|.

(b) Assuming the username defined in background job step is different from the user scheduling the job but you want the scheduling user to be able to view the spool anyways; then the user should have authorizations described in (a) + auth. obj. 'S_SPO_ACT' with |SPOACTION=BASE, DISP; SPOAUTH=<USERNAME>|, where <USERNAME> is the username defined in background job step.

There are other possible SPOACTION values that you might want to assign. See the object documentation for these.

Go to solution
former_member185031
Active Contributor

‎01-29-2009 5:34 AM

0 Kudos

my answer is not of your question but, what i am thinking why you want to go with SM37/own spool view, you can do it via SMX, user can see only their own job and spool request.

Regards,

Subhash

Go to solution
Private_Member_119218
Active Participant
In response to former_member185031

‎01-29-2009 6:18 AM

0 Kudos

Depends on your release.

On R/3 Enterprise Core, SMX is very limited in functionality; on Netweaver '04, it is much better and would indeed be a better and simpler solution then the one I suggested.