SAP BW ...AUTHORIZATIONS

Q.What is an authorization object?Ans.Defines the fields for authorization checks.

Q.What is the role maintenance transaction?Ans.PFCG

Q.What is a role?Ans. Usually defines the responsibility of a User with proper menu and authorization- example receiving clerk.

Q. give some example sof roles delivered in SAP-BW?Ans. all the BW roles start with S_RS; S_RS_ROPAD- production system administrator; S_RS_RRPU_bex user.

Q.What are the different authorization approaches available in SAP BW?Ans.
a.infocube based approach- Use this in injuction with Info area to limit access
b. querry named base approach- many customers use this to limit access . for example z querries are read only, y querries are for read/write.
c. Dataset approach- limitations of characteristics and key figures; you can use reporting authorization for this.

Q.What are the two object classes of BW authorizations?Ans. BW warehouse authorization –SAP standard; BW-reporting- Not delivered by SAP- user has to create.

Q.How many fields you can assign to authorization object?Ans. 10

Q. What are the values for ACTVT?Ans. create, change and display

Q.What is an reporting object?Ans.This is used for BW reporting to check authorizations by the OLAP processor.

Q.What are the new BW 3.X authorizations?Ans.S_RS_COMP1 checks for authorizations depending on the owner; S_RS_FOLD info area view of Bex elements (to suppress);
S_RS_ISET for infoset; S_GUI- new activity code 60 is loaded for upload.

Q. What is $ has an authorizations value?Ans.You use the $ followed by a variable name ( values populated in user exit for Bex)this avoids having too many roles.

Q.What is the info object 0TCTAUTHH?Ans.This is used in hierarchy authorization.

Q.How would you debug security issues?Ans. Using transactions ST01 and RSSMTRACE; a X mark in the log shows a failed authorization check.

Q.Which transaction shows template for authorizations?Ans.SU24.