Authorization Objects for Documents 
Authorization Objects for Documents
Definition
The document management authorization objects are elements of the standard R/3 System authorization concept.
They enable you to use complex authorizations for processing documents and their original application files.
Use
Document processing is organized in accordance with your company’s structure. Master data for all application areas is often created at one central location. Data that is specific to an application area is then added using the Change function.
The authorization system can be set up accordingly. Access authorizations are controlled via various authorization objects.
If you want to link the document to other SAP objects, the system also executes the authorization checks from the appropriate application areas while you are processing.
If you execute document management functions from within engineering change management your, the system checks the authorizations for engineering change management. The authorization objects are allocated to the Production Planning object class.
You need not know the individual authorization objects in detail if you generate the authorization profiles for the individual activity groups using the
profile generator.
Structure
The authorization objects for documents are assigned to the Document Management object class. Four authorization objects are defined for the Document Management System in the standard system.
Authorization Object C_DRAW_TCD (Activities for Documents)
The following table shows authorization object C_DRAW_TCD. This object controls which users can process which document info records, based on a combination of activity and document type.
Fields |
Possible Values |
Description |
ACTVT |
01 |
Create |
DOKAR |
The activities can be executed for the document type. |
Authorization Object C_DRAW_TCS (Status Dependent Authorization)
The following table shows authorization object C_DRAW_TCS. This object controls which users can process which document info records, based on a combination of activity, document type, and status.
Fields |
Possible Values |
Description |
ACTVT |
01 |
Create |
DOKAR |
The activities can be executed for the document type. | |
STATUS |
Authorization Object C_DRAW_STA (Document Status)
The following table shows authorization object C_DRAW_STA. This object controls which status(es) can be set for which document type.
Fields |
Description |
DOKAR |
The statuses are allowed for this document type. |
DOKST |
Authorization Object C_DRAW_BGR (Authorization Group)
The following table shows authorization object C_DRAW_BGR. This authorization object allows you to limit access to individual documents.
Fields |
Possible Values |
Description |
BEGRU |
0000 - ZZZZ |
Used to restrict the authorizations for document maintenance further. |
Authorization Object C_DRAW_DOK (Document Access)
The following table shows authorization object C_DRAW_DOK. This authorization object controls which original data of a specific document type there are access authorizations for.
Fields |
Possible Values |
Description |
ACTVT |
52 |
Change application start |
DOKAR |
Here you enter the document type that access to original data is allowed for. |
Authorization Object C_DRAD_OBJ (Object Link)
The following table shows authorization object C_DRAD_OBJ. This object controls which users can process which document info records, based on a combination of activity, object, and status.
Fields |
Possible Values |
Description |
ACTVT |
01 |
Create |
DOKOB |
You must enter the data base table for the objects here (for example, MARA for material record). | |
STATUS |
There are additional checks for document distribution.
See also:
Authorization Objects for Document Distribution