Authorization Checks for BW and BI Objects

The SAP system release level determines how authorization checks are performed for BW and BI objects. In releases before SAP BI 7.0, SAP uses the reporting authorization that uses the SAP standard authorization concept. For BI 7.0 and later, SAP uses an authorization concept for analysis authorization. SAS/ACCESS Interface to R/3 delivers one Business Add-In (BAdI) that implements the reporting authorization, and one BAdI that implements analysis authorization.
During installation, SAS is configured to use one of three implementations for table access authorization checks. The default implementation when no BAdI is activated uses the SAP authorization object S_TABU_DIS. If you want to use one of the two BAdI implementations, you must activate it during installation. Here is a description of the implementations.
Authorization Check Implementations
Authorization Check Implementation
Description
(Default, no BAdI)
S_TABU_DIS authorization object
Classic BAdI /SAS/AUTHBW01
This BAdI is compatible with BW and BI systems. User authorization checks are performed at the InfoCube, InfoObject, and ODS levels using the reporting authorization (SAP standard authorization concept).
Enhanced BAdI /SAS/IM_AUTHBI01
This BAdI is compatible with BI 7.0 and later systems. User authorization checks are performed using the analysis authorization. This not only provides an authorization check for the infoProvider (infoCube, infoObject, and DSO) but also column-level restrictions on master data attributes and key figures, and row-level restrictions on attributes.