Professional Documents
Culture Documents
RSECHIE
RSECTXT
Authorization Texts
RSDCUBE
RSDCUBEIOBJ
RSDCHA
Characteristic Catalog
How to find the list of roles of a particular query/ How to find whether
user has access to the role in which the executed query exists
You can find the query name from trace report or you can ask the user.
Provide the query name in RSRREPDIR and find the technical query name.
RSRREPDIR
Provide the technical query name (Unique ID) in AGR_HIER and find the list of
roles.
Analysis Authorizations:
When user executes a query which has an infoobject which is authorization
relevant, then user needs to have analysis authorizations to execute the query.
RSECAUTH:
Using a colon(:) as an authorization value enables to execute queries which do
not have auth relevant info object that are checked in the infocube and provide
aggregate data for the characteristic level for which user does not have access.
These authorization values can be assigned as single value, ranges and pattern
(*).
EQ: single value
BT: range of values
CP: contain pattern; ABC*
RSECADMIN Trace(RSECPROT)
Transaction code RSECADMIN is specific to BI and only traces the custom
reporting authorization objects you create to control access to InfoObject values.
2. Choose the button Execution as option if you know the query type the
user name, check With Log and execute the query yourself.
You can find all the traces executed by yourself if you provide blank date and
* in restricted user.