on 01-10-2007 4:14 PM
Hello,
Has anybody successfully migrated from reporting authorization concept to analysis authorizations on a large scale?
I have to define a strategy to migrate around 90,000 users and the solution proposed by SAP to use users or user groups does not seem feasible.
Has anyone found an alternative solution to using the migration program i.e. by role at minimum or is it necessary to manually migrate all roles to analysis authorizations? The only other solution would be to continue to use reporting authorizations.
Any feedback would be gratefully received.
Kind Regards,
Andy
Hi,
you have to migrate the impacted role.
Principally the role which use the RSR class and change it with the authorisation object S_RS_AUTH. (for your caracteristiq autho relevant).
+ Identify reporting security objects that have changed:
1. S_RS_COMP Update object type SOB for selection lists
2. S_RS_COMP1 Update object type SOB for selection lists
3. S_RS_BCS Update report types and additional event type
2. Implement new security objects for reporting
1. S_RS_BTMP Add security for Web templates
2. S_RS_BITM Add security for Web items
To manage analysis autho you can use the 5 ODS
0TCA_DS01 Template for ODS with Authorization Data (Values)
0TCA_DS02 Template for ODS with Authorization Data (Hierarchy)
0TCA_DS03 Template for ODS with Description Text Authorizations
0TCA_DS04 Template for ODS with Assignment of User Authorization
0TCA_DS05 Template for ODS for Generating Users for Authorizations
And the program RSEC_GENERATE_AUTHORIZATIONS
Hope it help
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Andy,
look here to have more info..
Bye,
Roberto
Hi,
Thanks for your reply... I was trying to find out more about how I can migrate the current users authorizations to analysis authorizations automatically without using the program that SAP have delivered. As their solution only runs by user ID or user group, it would be almost impossible with so many users.
Also, the authorizations would have to be created in Production which doesnt make sense.
I was hoping there was another approach where the restrictions on Company Code defined in a role could be migrated into an analsis authorization using the Company Code characteristic.
Regards,
Andy
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
90 | |
10 | |
10 | |
10 | |
7 | |
7 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.