Hi Chandra,
This is design in the system: the person who is authorized to park the
documents, should also have the authorisation to post it. In these
ENJOY transaction, all these functionalities are provided like Post,
save, park etc., and normally one person is the key person in the
department. In earlier versions it was separated like F-65 to park and
and FBV0 was to Post the document, where as in Enjoy transaction all
the authorizations is given in one transaction itself. This is addi-
tional functionality in system design.
To segregate the authority to park and to post, we suggest that you
either
- use the exit provided by note no 361420 to deactivate the posting/
parking button depending on users.
OR
- set up a validation to prevent a users from posting/parking
OR
- Use workflow to release the park documents.
Also, you can try the following in order for you to disable the POST
function. Within the transaction you need to have set-up the proper
activities for authorization objects.
The proper authorization objects must be setup to prevent users from
posting documents. The related authorization objects must then be linked
to the desired profile / user via trans SU02. The following
authorization objects are checked via FB / FV transactions:
F_BKPF_BES Accounting Document: Account Authorization for G/L Accounts
F_BKPF_BUK Accounting Document: Authorization for Company Codes
F_BKPF_BUP Accounting Document: Authorization for Posting Periods
F_BKPF_GSB Accounting Document: Authorization for Business Areas
F_BKPF_KOA Accounting Document: Authorization for Account Types
This can be reviewed via trans SU24. It is necessary to set up the
proper activites for authorization objects: Pre-enter, display, change,
display changes and/or activate / generate and remove the "create"
activity to prevent users from posting the document.
Please also see the online documentation regarding the use of authorizat
groups. The documentation about the authority check within posting is
given in the online documentation for the posting transaction eg. FB01.
The system does not check the authorization for document types or
gl accounts (etc..) that are not assigned an authorization group.
In the IMG for document types under financial accounting you enter
the authorization group. Maintain auth group for accounts in the
gl master record on the control data tab.
I will briefly explain the logic of authorization in SAP.
In SAP concept the person who is able to post the parked document
should have more authorization than a person who only parks the document
(requires only 77). The person to post a parked document must also have
the authorization to park a document because the document can be changed
when displayed in FBV0.
a)If you want to restrict the authorization to PARK-only, you can do
this by assigning activity 77 (park)to the relevant authorization object
b) you cannot restrict the authorization to POST-only (save as complete)
as this requires also activity 01 (and this cannot be given without 77).
In this case, if you want to segregate 'park' and 'post' authority,
we suggest that you either:
- set up a validation to prevent a users from posting/parking
OR
- Use workflow to release the park documents.
I hope that this answer your inquiry.
Best Regards,
Vanessa Barth.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.