Skip to content
Close
SEARCH
Contact
Contact
NextLytics
Megamenü_2023_Über-uns

Shaping Business Intelligence

Whether clever add-on products for SAP BI, development of meaningful dashboards or implementation of AI-based applications - we shape the future of Business Intelligence together with you. 

More
Megamenü_2023_Über-uns_1

About us

As a partner with deep process know-how, knowledge of the latest SAP technologies as well as high social competence and many years of project experience, we shape the future of Business Intelligence in your company too.

Megamenü_2023_Methodik

Our Methodology

The mixture of classic waterfall model and agile methodology guarantees our projects a high level of efficiency and satisfaction on both sides. Learn more about our project approach.

Products
Megamenü_2023_NextTables

NextTables

Edit data in SAP BW out of the box: NextTables makes editing tables easier, faster and more intuitive, whether you use SAP BW on HANA, SAP S/4HANA or SAP BW 4/HANA.

Megamenü_2023_Connector

NextLytics Connectors

The increasing automation of processes requires the connectivity of IT systems. NextLytics Connectors allow you to connect your SAP ecosystem with various open-source technologies.

IT-Services
Megamenü_2023_Data-Science

Data Science & Engineering

Ready for the future? As a strong partner, we will support you in the design, implementation and optimization of your AI application.

Megamenü_2023_Planning

SAP Planning

We design new planning applications using SAP BPC Embedded, IP or SAC Planning which create added value for your company.

Megamenü_2023_Dashboarding

Dashboarding

We help you with our expertise to create meaningful dashboards based on Tableau, Power BI, SAP Analytics Cloud or SAP Lumira. 

Megamenü_2023_Data-Warehouse-1

SAP Data Warehouse

Are you planning a migration to SAP HANA? We show you the challenges and which advantages a migration provides.

Business Analytics
Megamenü_2023_Procurement

Procurement Analytics

Transparent and valid figures are important, especially in companies with a decentralized structure. SAP Procurement Analytics allows you to evaluate SAP ERP data in SAP BI.

More
Megamenü_2023_Reporting

SAP HR Reporting & Analytics

With our standard model for reporting from SAP HCM with SAP BW, you accelerate business activities and make data from various systems available centrally and validly.

More
Megamenü_2023_Dataquality

Data Quality Management

In times of Big Data and IoT, maintaining high data quality is of the utmost importance. With our Data Quality Management (DQM) solution, you always keep the overview.

More
Career
Megamenü_2023_Karriere-2b

Working at NextLytics

If you would like to work with pleasure and don't want to miss out on your professional and personal development, we are the right choice for you!

More
Megamenü_2023_Karriere-1

Senior

Time for a change? Take your next professional step and work with us to shape innovation and growth in an exciting business environment!

More
Megamenü_2023_Karriere-5

Junior

Enough of grey theory - time to get to know the colourful reality! Start your working life with us and enjoy your work with interesting projects.

More
Megamenü_2023_Karriere-4-1

Students

You don't just want to study theory, but also want to experience it in practice? Check out theory and practice with us and experience where the differences are made.

More
Megamenü_2023_Karriere-3

Jobs

You can find all open vacancies here. Look around and submit your application - we look forward to it! If there is no matching position, please send us your unsolicited application.

More
Blog
Business Data Cloud - What is it all about?
Business Data Cloud - What is it all about?
Data Platform Architecture with SAP Datasphere & Databricks
Data Platform Architecture with SAP Datasphere & Databricks
Ingesting Data into Databricks Unity Catalog via Apache Airflow with Daft
Ingesting Data into Databricks Unity Catalog via Apache Airflow with Daft
Increase Efficiency with Apache Airflow Managed Service Operations
Increase Efficiency with Apache Airflow Managed Service Operations
NextLytics Newsletter Teaser
Sign up now for our monthly newsletter!
Sign up for newsletter
 

How Analysis Authorizations (row level security) for ADSOs and InfoObjects are supported in NextTables

◀ Back to Knowledge Base

NextTables has previously supported analysis authorizations for tables based on aDSO. With version 7.0, this feature is also available for InfoObjects. In this article, I will explain how to use analysis authorizations with NextTables.

How analysis authorizations work in SAP BW

But first, let’s explore what analysis authorizations actually are and what differentiates them from object authorizations. Object authorizations provide access protection on the InfoProvider level. These authorizations are required by all users, for example, to call up NextTables tables and change data. These authorizations cover general access to InfoProviders. There are no access restrictions on the data contents of these objects.

These are covered by analysis authorizations. Analysis authorizations restrict access to the data content of the InfoProvider. This means that certain data content can be unlocked for a certain user. This enables fine-grained authorization assignment. Analysis authorizations are also called  Row Level Security (RLS) in the SQL world.

Imagine a chocolate box with different chocolates. The object permissions determine whether you can open the box of chocolates at all. The analysis permissions allow you to take certain types of chocolates. For example, you may take the nougat chocolates, but not touch the marzipan ones.

 

In the same way, object authorizations determine whether you can access the table with company codes’ sales data. Analysis authorizations allow you to only see certain company codes. In the screenshot below you can view an example of analysis authorizations for company codes.

how analysis authorizations 1

How to turn on Analysis Authorizations Check in NextTables

You can turn on analysis authorizations check in the configuration of table properties. Menu path Settings -> Configuration -> enter the desired table. Please change the option “Check analysis authorization?” to 1 (Check analysis authorization), as illustrated on the screenshot below.

how analysis authorizations 2

Authorization check for DSOs

Authorization checks are executed for ADSOs and classic DSO, also Direct Update ones. A DSO can contain several authorization-relevant InfoObjects. NextTables automatically generates variables for each InfoObject that is flagged as authorization relevant. You can set the variables in the global filter, as you can see on the screenshot below.

how analysis authorizations 3

An user only sees the company codes for which he is authorized. In our example, company codes 1000 and 3000. This are the company codes you saw in the analysis authorization.

how analysis authorizations 4

Why do we use variables? With the variables in place the user will see that his view is restricted and therefore might look different from what other users see. Furthermore, templates / bookmarks can be created with variables and shared, so that each user will see "their" data.

If the user tries to request data that is outside his permissions, an error message is displayed.

how analysis authorizations 5

When writing back data authorization check will be done as well. All values that are being updated have to be within the scope of user’s authorizations.

When authorization check is enabled, NextTables uses the function module RSDRI_INFOPROV_READ. Therefore, some fields, which are not relevant for reporting, e.g. RECORDMODE cannot be fetched. A message will be displayed in the console, listing the fields which cannot be displayed. You can see the console in the developer tools of your browser.

how analysis authorizations 6

Authorization check for InfoObjects

For the authorization check to work, the InfoObject must be marked as an InfoProvider. Please check the setting “Usable as InfoProvider” in the properties of respective characteristic.

how analysis authorizations 7

NextTables automatically generates variables for each InfoObject that is flagged as authorization relevant. You can set the variable in the global filter.

how analysis authorizations 8

Thus, the user only sees those elements for which he is authorized. In our example, the user sees the company codes 1000 (Germany) and 3000 (France). This are the company codes you saw in the analysis authorization.

how analysis authorizations 9

Why do we use variables? With the variables in place the user will see that his view is restricted and therefore might look different from what other users see. Furthermore, templates / bookmarks can be created with variables and shared, so that each user will see "their" data.

If the user tries to request data that is outside his permissions, an error message is displayed.

how analysis authorizations 10

When writing back data all records will be checked against existing analysis authorizations of the user. Compounded InfoObjects are supported as well. 

Which License is needed for this feature Professional  | Enterprise

Technical Tutorials

Do you have a question regarding NextTables? Already a customer? Please click here for Support.