Kontakt

Ansicht
Dokumentation

BOOKSIMG_ISUAU - BOOKSIMG ISUAU

BOOKSIMG_ISUAU - BOOKSIMG ISUAU

RFUMSV00 - Advance Return for Tax on Sales/Purchases   ROGBILLS - Synchronize billing plans  
This documentation is copyright by SAP AG.
SAP E-Book

In this section you use the SAP authorization concept to define which functions users are permitted to perform.

For this purpose you must define authorizations and allocate these authorizations to users using profiles

Authorizations are related to authorization objects, which are predefined by SAP. You can group together authorizations that belong to the same field of work in one profile; profiles can in turn be grouped together in composite profiles.

You must perform the following tasks for users:

  • Create user master records
  • Create authorizations for authorization objects
  • Group together authorizations for predefined authorization objects into profiles
  • Allocate one or more profiles to each individual user in the user master record

For this purpose you must define:

  • Who is to be responsible for creating user master records
  • Who is to define and manage authorizations for authorization objects
  • Who is to allocate authorizations to profiles and profiles to users
  • Which authorizations users are to have in other R/3 application components

To carry out user maintenance you require authorizations for the following authorization objects:

  • S_USER_GRP (User Master Maintenance: User Groups)
This authorization object controls access to the authorization group and to the activity.
You require an authorization for this object if you wish to create or process users in the system.
  • S_USER_AUT (User Master Maintenance: Authorizations)
This authorization object controls access to the authorization object, to the authorization name and to the activity.
You require an authorization for this object if you wish to maintain authorizations or if you wish to group authorizations into profiles.
  • S_USER_PRO (User Master Maintenance: Authorization Profile)
This authorization object controls access to the authorization profile and to the activity.
You require an authorization for this object if you wish to process profiles or allocate profiles to users.

For information on the authorizations you require, refer to the Implementation Guide for the relevant application.

It is recommended that you carry out user maintenance and authorization management locally by assigning different authorizations according to specialist areas and user groups.

You can either create authorization profiles manually or automaticall using the profile generator.

The profile reduces the workload involved in introducing the ERP system.Authorizations are automatically generated based on selected menu functions and proposed for subsequent processing. The profile generator can also be integrated with HR-Org (organization management, time dependency).
You can create authorizations using the Profile Generator in transaction PFCG (role maintenance).

Note the general documentation for the Profile Generator in the SAP Library. You can find this by choosing:
BC - Basis Components -> Computer Center Management System -> Users and Authorizations -> The Profile Generator
This information is also available in the Implementation Guide by
choosing Basis Components -> System Administration -> Users and Authorizations -> Maintain Authorizations and Profiles using the Profile Generator






Addresses (Business Address Services)   rdisp/max_wprun_time - Maximum work process run time  
This documentation is copyright by SAP AG.

Length: 4104 Date: 20240524 Time: 014500     sap01-206 ( 60 ms )