cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

CG02 display only authorization settings?

Go to solution
former_member561828
Participant

on ‎12-15-2014 6:38 PM

0 Kudos

With CG02 we need to restrict general users to display only.  Can someone advise on authorization objects and values for this?

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎12-16-2014 6:34 AM
0 Kudos

Hi Richard,

You can use authorization object C_SHES_TRH with field (ACTVT - Activity) equals to 03 (display all specifications but not create or change any) to restrict users for display only purpose in CG02.

You can also check authorization objects C_SHES* for other restrictions in Specification Management.

You can check object documentation for more details.

Regards,

Kannan Veerapandian.

Show replies
Show replies
former_member561828
Participant
‎01-16-2015 7:12 PM
0 Kudos

To accomplish display only for CG02 in our environment we needED to maintain authorization objects C_SHES_TV2, C_SHES_TS2 and C_SHES_TD2

christoph_bergemann
Active Contributor
‎01-17-2015 6:45 AM
0 Kudos

Dear RIchard

may be: https://www.consolut.com/en/s/sap-ides-access/d/s/doc/YP-RELNEHS_BD_500_AUTH_OBJ

is of interest. If I remember correct: you can usethe objecs only if you have activated EnhPack 3.

So you need may be to consider C_SHES_TR2 as well (this is specification header).

C.B.

Answers (1)

Answers (1)

christoph_bergemann
Active Contributor
‎12-16-2014 8:01 PM
0 Kudos

Dear Richard

your question is to "general". The answer of Kannan is in any case correct. If you are planning to set up an access concept in most cases you should design a "role" and describing the actions allowed by the role. On deeper level then you have to figure out: which access objects are there; and how to use them. E.g. if you do not properly set up your access concept the "general use" might know the existance of spec Id x; but he or she can not read data as "identfiers" etc. On the top: companies try not only to think about "Cg02"; but the "general" user might need as well access tights to CG54 and othere transactions; If you do not have any kind of authorization concept in place: the "design" and "implementation" of such kind of access concept can take 6 montn or longer based on tghe number of roles you would like to generate, based on the EHS modules used and based on complexity of company (organisational aspects)

C.B.

PS: VERY IMPORTANT: KEEP IN MIND THAT IF YOU HAVE ENHPACKS INSTALLED AND YOU HAVE ACTIVATED THEM: you will get new options !! (and sometimes these do really help)

Show replies
Show replies
Ask a Question