Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Authorization for RFKK_MASS_ACT_SINGLE_JOB

Former Member

‎06-17-2010 8:26 AM

0 Kudos

Hi guys,

We have SAP ERP 6.0, we have a mass operation in t-code FPMA (automatic clearing). We have created a role with this t-code and assigned to the user who is supposed to run this t-code. However, each time the job is failing; when we check in SM37, it says job failed...MESSAGE_TYPE_X error etc

We are currently investigating the possibility of authorization; we believe the user does not have sufficient authorization to run the operation, because when we assign SAP_ALL to him, it works. SU53 does not give anything.

We would like to know which additional authorization objects we need to include in his role to allow him perform this task?

Please also note that inside the t-code, it calls the program RFKK_MASS_ACT_SINGLE_JOB.

Please advise us. Any suggestion would do.

regards

BasisIS

3 REPLIES 3

Former Member

‎06-17-2010 10:36 AM

0 Kudos

Hi,

For Tcode FPMA, the objects F_KKKO_BUK, F_KKMA, F_KKSU are being checked for authorization. So, make sure you give correct values for these objects and also as you are saying that this is being scheduled in background make sure that user with whose ID job is scheduled having access to run in background. Check the objects S_BTCH_ADM, S_BTCH_JOB for the same.

As per my knowledge, for any authorization error for a Tcode or program which is being executed in background it will not show any missing objects in SU53. So, try executing the same in front end first to find out what is missing and after everything is fine schedule the same in background. To find out the authorization issue just create one separate role with that TCode only and assign to the user and start checking with the help of SU53 till you get your desired result.

Regards,

Sharath

Bernhard_SAP
Employee
Employee

‎06-17-2010 10:47 AM

0 Kudos

rather use st01 to trace the authority-checks than SU53.

Switch on the authority-trace for the user->let him run the program/job->verify the trace result and assign the authorizations for which the check failed.

b.rgds, Bernhard

Former Member
In response to Bernhard_SAP

‎06-17-2010 1:39 PM

0 Kudos

hi guys,

both your suggestion seem good; i'll try them n feedback you accordingly.

thanks a lot for your prompt reply

BasisIS