Hello Andrea,

Thank you very much for your answer.

We could maintance cost center via "organizational level " but in this case the huge number of roles will still remain. Please keep in mind that single cost center shall only be given to exact defined users. Granting any cost center to any user must be possible.

Cheers, Zidu

Variables via analysis auths are definitely the way to go for the reporting.

From an accounting perspective CO auths are never going to be as important as FI auths yet many companies organise their business along CO lines. Personally I think it's a bit of a cop out from SAP that they have not delivered a really robust auth model in this area, unlike the rest of the core modules.

Some reasons which I see for this are:

- Controlling is a 2nd class citizen to the modules it is controlling. They got their concepts in first and now fitting controlling concepts to it is a hassle.

- Customers differ widely in their confidentiallity views of cost centers and the quality of the master data and cost center conventions was not always thought of in advance.

- Historically, many companies have had a central G/L department where the controllers would send their journal entries for accruals, adjustments, etc to. So both the CO and the FI side were set up without considering each other. Then the controllers were trained on FB50 and the assumptions fell apart.

etc.

For sure it belongs in BW. Recommendations from SAP to use the planning option there are regularly made, so if you choose the ECC backend system for it and find some transaction is not CO conform with what you want to achieve, then I don't see much chance of an enthusiastic "cop in" from SAP.

Just guess-work and personal observations

Cheers,

Julius

Unfortunately this goes beyond naming conventions and adequate stewardship of costs, the actual implementation of the concept is reminiscent of a large block of Emmental ;-). The Professional Services implementations of SAP jump through a whole load of hoops to protect this data, much of which wouldn't be required if the concept was sufficient to rest

Offering an add-on in an additional system solves the problem for a minority of customers who decide they use a workaround, not much good for those who don't want the extra complexity or expense.

Unfortunately CO lacks consistency and standardisation that is present in most other mainstream modules (we can excuse PS ). Even recently, taking the New G/L as an example, it was released with a lack of basic working security. The subsequent scramble to get the security working (on the CO side) did not do anyone any favours, especially the poor souls at OSS who were flooded with notes.

>

> ... (we can excuse PS  ). 

Gosh: you are being generous! I am not about to excuse anything, not PS, not CS, PM, QM, not WM ... take CS for example: what kind of concept is it to have to authorise the transaction code repeatedly in every object and then again in S_TCD?

And don't get me started on the Enjoy-transactions.

At least, in CO (CO-PA) there are 'visible efforts' to improve the security!

> And don't get me started on the Enjoy-transactions.

I reckon your gravestone will read "killed by MIGO"

> > And don't get me started on the Enjoy-transactions.

Are you having SHD0 problems with them?

Cheers,

Julius