BW: Business Information Warehouse (authorization object: RS)

The project must restrict the operation of the production machine to modify reports, workbooks, and process chains. So let's briefly talk about the corresponding authorization objects.

The preceding is the reporting basic permission provided by SAP.

First, s_rfc and s_tcode are required by analyzer.

Then, all you can see in r_rs_comp is that you can restrict query.

R_rs_comp1 is actually an extra layer, which can limit the query owner, that is, the creator.

PS: I tested that Comp has a higher priority than comp1. That is to say, if comp1 gives all permissions, and comp only gives the view, the comp prevails.

What about workbooks?

First, restrict the user to be unchangeable and use:

S_user_agr with actvt 03; act_group

Of course, s_gui and s_rfc are also indispensable,

For saving workbooks in favorites you need:

S_gui

S_bds_ds

For saving workbooks in roles you need:

S_user_agr

S_user_tcm

Refer to the following section:

Dear Praveen, Our collage vishnuc is on right, the authorization object that you need to include in your reporting role is Saving workbooks in favorites S_gui: Authorization for GUI activities S_bds_ds: Authorization for document set. The values that I suggest to use in each authorization object are following s_gui in the field activity put 60. For s_bds_ds: in the field activity, please put 03 and 30 and class type put OT. Saving workbooks in roles: S_user_agr = Authorization for role check S_user_tcm = Transaction in roles The values that I suggest to use in each authorization object are following s_user_agr in activity field put 01, 02 y 22. for Delete woorkbook put also 06 value. in field role name put "*". other hand in s_user_tcm put in tcode "rrmx" I hope this can help you! Luis Source Document

So what about process chain?