Show TOC

AuthorizationsLocate this document in the navigation structure

Use

To ensure that SAP NetWeaver BW represents the structure of your company and meets your company's requirements, you have to define who has access to what data. There are two different authorization concepts for this depending on the role and tasks of the user:

  • Standard Authorizations

    You use these authorizations for the various SAP NetWeaver BW tools, in the Data Warehousing Workbench or in BEx Query Designer for example. The authorization concept for standard authorizations is based on the AS ABAP authorization concept.

  • Analysis Authorizations

    You use these authorizations to provide access to transaction data belonging to authorization-relevant characteristics, to sales data for example. Authorizations of this type are not based on the AS ABAP authorization concept. They use their own concept based on the needs of BW reporting and analysis instead.

Critical Authorizations

Critical Analysis Authorizations

Authorization

Description

0BI_ALL (authorization for all values of all authorization-relevant characteristics)

Every user with this authorization can access all the data at any time. Every user who has a profile containing authorization object S_RS_AUTH and who has entered 0BI_ALL (or has included it using an asterisk (*), for example), has complete access to all data.

For more information, see the documentation for analysis authorizations, under Assigning Authorizations to Users.

Critical Authorization Templates

If you use authorization templates, note that some of these have wide-ranging authorizations:

Authorization Template

Description

S_RS_RDEAD (BW Role: Administrator (Development System))

These authorization templates contain wide-ranging authorizations on authorization object S_RFC.

S_RS_ROPAD (BW Role: Administrator (Production System))

S_RS_TREQD (BW: Load Data (ALE, IDocs, RFC, Batch, Monitoring))

S_RS_RDEMO (BW Role: Modeler (Development System))

These authorization templates contain authorizations for all InfoProviders on authorization object S_RS_COMP.

S_RS_TREPU (BW: Reporting User)