on 02-05-2009 10:09 AM
Hi gurus!
I have loaded data to DSO 0PA_DS02 and 0PA_DS03 and generated HR-authorizations to users in BI.
Our problem is that if a user has both structural authorizations and SAP_ALL -profile in HR-client, there will be two rows in a profile in BI for info-object 0TCTAUTHH. One is for the node of the hierarchy he or she has been given structural authorizations for and the other is for ROOT_H.
Together these doesn't seem to work. If I delete the records in 0PA_DS03 with value 3 for 0TCTATYPE and generate the authorizations, everything works fine.
What might affect this as in a another BI-system this works with similar records in 0PA_DS02 and 0PA_DS03? To my knowledge two different profiles should be created, one for structural authorizations and the other based in sap_all -rights (starting with T-MD)?
Any ideas?
Best regards
Sari
Hi!
This issue was resolved when I noticed that the user that had the incorrect authorization, had sap_all rights in one HR-client and structural authorizations in another HR-client. Both clients are source systems to one BI-system. When we removed the sap_all authorization from one HR-client, structural authorizations were created correctly in BW system. Anyway, it seems that generation of BI structural authorizations can't handle this kind of situation. If both authorizations are in one HR-client, generation works fine.
Sari
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
84 | |
10 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.