on 02-09-2015 3:48 PM
Hi Folks.
The users of these authorisations are ‘Time Administrators’ and are only responsible for maintaining information that relates to the time management for a small group of employees.
Time Administrators are not managers or part of the HR department. For example, a secretary in the Head Office may be responsible for the Time Management of a group of senior managers, that secretary should not be able to see the pay details of the managers (IT0008) or their address details (IT0006). The same principles apply in the factory, managers do not normally administer time, it is normally production line supervisors.
So when my users try to run PT60 or PT61, the abap report checks Infotype 0008 for RPTIME00 and Infotype 0006 for pt60, the user has access to PA51, I don't want it to display IT0008 and IT0006.
If I try this configuration for RPTIME00 It doasn't work.
S_TCODE = PA51, PT60
P_ABAP.
COARS = 1
REPID = RPTIME00
Istance 1
P_ORGIN
INFTY = 0000-0007
SUBTY = *
AUTHC = M,R
PERSA = G*
PERSG = *
PERSK = *
VDSK 1 = *
Istance 2
P_ORGIN
INFTY = 0009-9999
SUBTY = *
AUTHC = M,R
PERSA = G*
PERSG = *
PERSK = *
VDSK 1 = *
Istance 3
P_ORGIN
INFTY = 0008
SUBTY = *
AUTHC = R
PERSA = *
PERSG = *
PERSK = *
VDSK 1 = 0001TIMEXXX
P_ORGXX
INFTY = *
SUBTY = *
AUTHC = *
SACHA = *
SACHP = *
SACHZ = *
SBMOD = *
When I try to run Time Eval, using EE with G* PERSA (IT0001), the rptime00 report displays 0,
SU53 display an IT0008 with * in VDSK1.
Take in account that I tried EE with and without VDSK1 in their infotype 0001.
Thanks for your help.
Omar.
Hi All,
Problem solved.
The first solution works only if you don't have the Authorization badi enhancement activated, if you decided to implement your badi you should implement and authority check code for P_ABAP coars = 1 in your contstructor method.
Best regards,
Omar
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Omar,
we have not Implemented HR authorization Badi, please post the details. if file is big, please send by email to wukeqin@Hotmail.com.
thank you in advance.
Keqin Wu
.
Hi Omar,
Provide only PT60 / PT61 in S_TCODE and I hope that until you give pa30/pa20 in this object they can't able to see Info type 0008 / 0006 and I think so that they need authorization for pa20/pa30.
Hope I am clear on your requirement.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Kedhar,
This is not solve my problem, the PA51 is also like PA20/30, I need to maitain the PA51 and also IT0008/6 but using PA51 they can display IT0008/6, something is not working fine because the solution of sap is to implement the objets as I said, it's supposed it should to work.
Thanks for your help.
Omar
User | Count |
---|---|
107 | |
12 | |
11 | |
6 | |
5 | |
4 | |
4 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.