BusinessObjects and SAP – Publishing of Crystal Reports Part 3 of 3
This time we finish the configuration and as last step we will configure the necessary security rights on the BusinessObjects server.
BusinessObjects security configuration for publishing
To be able to publish a report from SAP BI to BusinessObjects Edge the users need to have the necessary rights in the BusinessObjects system.
The following is a suggested differentiation:
- BusinessObjects Enterprise administrators
Enterprise administrators configure the BusinessObjects Enterprise system for publishing content from SAP. They import the appropriate roles, create necessary folders, and assign rights to those roles and folders in BusinessObjects Enterprise.
- Content publishers
Content publishers are those users who have rights to publish content into roles. The purpose of this category of user is to separate regular role members from those users with rights to publish reports.
- Role members
Role members are users who belong to content roles. They have rights to view and schedule content that has been published to the roles they are members of.
However, regular role members cannot publish new content, nor can they publish updated versions of content.
The following are recommendations for the previously described BusinessObjects user groups:
BusinessObjects Edge imports a group for each role that is added to the entitlement system as defined in the CMC. To ensure that suitable default rights are granted to all members of a content bearing role, grant the following rights in the Content Administration Workbench for each entitlement system that is defined in BusinessObjects Enterprise:
- Default Security policy for reports = View
- Default security policy for role folders = View on Demand
Assign the following rights to a publisher role in the Central Management Console:
- Add objects to the folder.
- View objects.
- Edit objects.
- Modify the rights users have to objects.
- Delete objects.
- Delete instances.
- Copy objects to another folder.
To set those recommended rights I logon to the SAP Server and start the transaction /CRYSTAL/RPTADMIN.
I double-click on my system entry and navigate to the tab “Layout”.
Now I can set the default security based on the recommendations.
After I configured the rights on the SAP side I now log onto the Central Management Console.
And select the item Folders.
I navigate down to the folder for my SAP System ID.
I select the folder and go to the menu Manage > Security > User Security.
I can now Click Add Principals….
…and by clicking GroupsI can select the roles from the SAP system.
I can click Add and Assign Security …
… and navigate to the Advancedtab. And click Add/Remove rights.
Now I can configure the rights for this role.
At this point you :
- Did configure the SAP Authentication and imported roles (previous blog)
- Did configure the publishing service
- Did create a RFC Destination in transaction SM59
- Did create a BusinessObjects Server definition in transaction /CRYSTAL/RPTADMIN
- Did assign the necessary rights to the SAP roles in BusinessObjects Edge
And as a result you should be able to publish a report from Crystal Reports Designer.
You can create a new report in the Crystal Reports Design using the SAP specific menus and when saving the report to BW you will be asked if you also want to publish the report from the BW system to the BusinessObjects system – which based on te configuration we did should result in a successfully published report and a report on the BusinessObjects Edge server.
In the next blogs I will explain the SAP specific features in InfoView and the Content Administration Workbench
For those that missed the installation parts, here are the links to the blogs: