on 05-28-2014 10:29 AM
I have created a scenario for park/post for special GL entries. for that I will be using f-02 to hold the invoice and fb11 to post the invoice.
I need to restrict the authorization of posting in F-02 so that the user can only held the invoices. any possibility to restrict the posting rights? I dont want to go on screen variants? cant it be done from second level authorization?
Looking forward for the feedback!
Hello,
Trace the authorization objects triggered during posting activity in F-02 though t-code ST01.
Select authorization check, switch on trace and post in F-02 and switch off the trace and analyze.
Once you have object name and activity values, you can ask BASIS to restrict the access based on these.
Thanks,
V V
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I have checked, system is still allowing to post the document.
I have trace the system for authorization check in ST01, I can see system has checked just the activity as 01 to post the document.
I don't think it can be possible through any standard authorization object. You may have to go for your own custom authorization object or you may go for the exit or badi to restrict that.
Thanks Dev. Activity 01 is checked even before we click post. This is just to check access to F-02.
We can check this by activating trace, go to F-02, switch off trace and analyze.
@Javed,
You can check to write the logic in Enhancement Spot as well if there are no BADI/user exits available.
You may think of validation (OB28) as well.
Thanks,
V V
User | Count |
---|---|
91 | |
8 | |
7 | |
4 | |
4 | |
3 | |
3 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.