Process of building authorization in BW with, and without BPC, is different. Reason is user authorization are enhanced by roles assigned to them in BPC administration panel. For more information about this process you can search for Data Access Profiles (DAPs).
Common ways
Common ways to check the BW auth is:
- Execute query on the affected user in rsudo - But it may not be enough, please check more
- Check authorization log using SU53
- Trace authorization using ST01, STAUTHTRACE or similar
BPC
Most important difference is that user is sometimes able to execute the query in rsrt, but in the same time is not able to execute the BPC Planing workbook laing on the same object. After opening the workbook, before the prompts user will see issue like:
You do not have sufficient authorization for the infoprovider.
But how to trace it to find the root cause ? Solution is very simple:
- Go to RSUDO
- Make sure that ABAP BICS is selected
- In the text box bellow put:
&environment=<yourenvironment>&model=<yourmodel>
- If you do not know the enviroment and model - please open the BPC workbook:
- At the end it should look like on the image bellow:
Good blog about the BPC authorization:https://thirdrock.com.au/2017/10/01/demystifying-sap-bpc-embedded-security-blog-004/
Important SAP Note:https://launchpad.support.sap.com/#/notes/2366358