Hierarchy
⤷ BC-CUS-TOL-TME (Application Component) Table Maintenance Tool
⤷ SVIM (Package) Basis View Maintenance
IMG Activity
ID | SVIM_ORG_CRIT_DEF | Define organizational criteria |
Transaction Code | S_BCE_68001484 | xxx |
Created on | 19991209 | |
Customizing Attributes | SVIM_ORG_CRIT_DEF | Define line-oriented authorizations |
Customizing Activity | SVIM_ORG_CRIT_DEF | Maintain line-oriented authorizations |
Document
Document Class | SIMG | Hypertext: Object Class - Class to which a document belongs. |
Document Name | ORGCRIT_DEF |
In this section you define cross-client organizational criteria for line authorizations. These can be used for all customizing data display and maintenance transactions. You assign one or more table key fields, via which you can control the access authorization to one or more tables by business criteria, to an organizational criterion. You can assign business work areas, e.g. organizational units (country, plant, company code), to a user or user group. A user can only view the data for which there is an authorization.
Cross-table organizational criteria
An organizational criterion can be cross-table. No values are assigned to the key fields, but there are foreign key relationships to assigned check table fields.
Example
You want to restrict the access authorization of a user to the data for a particular country. Create a new organizational criterion and assign the country code LAND1 from the table T005 (Countries) to it. The new authorization object S_TABU_LIN defines the value range of the key field which the user can use.
Requirements
Standard settings
Recommendation
Activities
Define organizational criteria, if required.
To assign an organizational criterion to a user or a user group, assign an activity group whose authorization profile contains the authorization object S_TABU_LIN with the desired organizational criterion, to the user or user group. Define the activity which the user or user group can perform and the value range for which it can be performed. You can specify up to 8 attributes for the value range.
Further notes
The maintenance transaction authorization check first checks the existing authorization objects S_TABU_CLI and S_TABU_DIS. If this check is successful, it checks whether organizational criteria have been defined for the key fields of the table. If so it checks whether there is authorization for values or value ranges of these fields. Only those fields are displayed for which the entire authorization check is successful.
Business Attributes
ASAP Roadmap ID | 306 | Establish System Administration |
Mandatory / Optional | 3 | Nonrequired activity |
Critical / Non-Critical | 1 | Critical |
Country-Dependency | A | Valid for all countries |
Maintenance Objects
Maintenance object type | C | Customizing Object |
Assigned objects | ||||||
---|---|---|---|---|---|---|
Customizing Object | Object Type | Transaction Code | Sub-object | Do not Summarize | Skip Subset Dialog Box | Description for multiple selections |
CL_ORGCRIT | C - View cluster | SM34 |
History
Last changed by/on | SAP | 20000117 |
SAP Release Created in | 50A |