cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Authorization Group

Go to solution
MangeshP
Active Contributor

on ‎12-20-2010 1:34 PM

0 Kudos

Dear Friends,

I know I can restrict two user "A" & "B" who create DIR " 1001" & "1002" respectively under same document Type say "DRW". Means they cannot display the DIR created by each other by Authorization Object "C_SIGN_BGR".

I have tried this and works perfect.

But my question is can I maintain these Authorization Groups so that when user enters any wrong Authorization group, it should not allow him to enter in Authorization Group Field.

If I Maintain the setting in SPRO in DMS>Approvals>Define Authorization groups, will my maintained values will be validated with the values I enter in Authorization Group field.

Also I know the developement mentioned under link.

[https://wiki.sdn.sap.com/wiki/display/PLM/F4forAuthorization+group]

But I want to avoid this developement.

Waiting for your reply.

With warm Regards

Mangesh

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎12-22-2010 12:25 PM
0 Kudos

Hi Mangesh,

To achieve this I suggest you to Update domain BEGRU as mentioned in the link

http://wiki.sdn.sap.com/wiki/display/PLM/UsingAuthorizationGroupfieldin+DMS

values can be maitained in ztable

You can also have search help for BEGRU, by adding search help in DRAW table for BEGRU.

also go through post -

Auth object C_DRAW_BGR has field value reference to data element BEGRU

Regards

Surjit

Show replies
Show replies

Answers (2)

Answers (2)

Former Member
‎12-22-2010 8:46 AM
0 Kudos

Hi Mangesh,

I have two solutions for you:

1. Authorization groups are maintained in roles in object C_DRAW_BGR . If user enter the authorization group other than to which he is authorized then message comes" You are not authorizaed for the authorization group ---".

2. If you want restrict user in the auhtorization group's field itself then you need to go for z-developmet since it's not feasible in standard to restrict here.

Hope this will focus more and will help.

Regards,

Ravindra

Show replies
Show replies
Former Member
‎12-21-2010 4:40 PM
0 Kudos

Hi Mangesh,

Auth Group validation take place like this.

1) We have auth object where we maintain auth group.

2) We assign this auth obj to role.

3) Role is assigned to user ID.

Now when user try to enter auth group ,system will check whether auth grp is maintained in his role.

If his role has same auth grp which he is entering ,system will allow him.

If he try to enter some other auth grp other than maintained for him,system will show message you are not auth to maintain this auth grp.

No where except auth obj system will check auth grp.

This is free field and maintained with auth obj only.

There is no config to validate it .

Regards

Abhijit A. Pachgade

Show replies
Show replies
Ask a Question