Ansicht
Dokumentation
HRAS_AUTHENTIFIC - Authorizations
ABAP Short Reference rdisp/max_wprun_time - Maximum work process run timeThis documentation is copyright by SAP AG.
In this section, you specify the settings for the authorization check.
Processes in HR Administrative Services represent business transactions in Personnel Administration. The processes access application-specific data (in Personnel Administration, this is infotype data) that is entered using forms. In addition, you can use different documents as attachments within the processes. These processes are categorized using different attachment types.
The authorization concept of HR Administrative Services is based on an authorization object (P_ASRCONT) that works with content-specific authorization checks. In other words, it checks the authorization for different types of access (activities such as read, withdraw, save, and so on) to various process contents, such as attachments or forms.You can simplify these checks by grouping the process contents.
Authorization check and the authorization object P_ASRCONT
You can also perform the authorization check without the authorization object P_ASRCONT. In this case, you use the application-specific authorization check that is based on different HR authorization objects in Personnel Administration. Note that without the authorization object P_ASRCONT, the detailled setup and control of the authorization check is not possible for the following process contents:
- Processes themselves
- Attachments that the system displays using the Digital Personnel File (DPF) or the Process Browser
Without the object P_ASRCONT, you can only set up in detail the authorization check for forms that the system uses in the processes, as forms are linked with HR infotypes.
In addition, you can perform the content-specific and the application-specific authorization check together. The authorization object P_ASRCONT and various HR authorization objects are used for this.
If you use the authorization object P_ASRCONT, you must store this object in the authorization profile. If you do not use this object, you do not need to store it in the authorization profile. For more information about the authorization profile, see the documentation for the IMG activity Define Profile.
Note
The authorization object P_ASRCONT always checks the application object on a small scale. For example, if you work in Personnel Administration with the object type Person or Employee, then you always require the minimum authorization (at least read authorization) for the Personnel Number object. The system checks this minimum authorization using an active HR authorization object.
For more information about HR authorizations, see the Implementation Guide (IMG) of Personnel Management under Personnel Administration -> Tools -> Authorization Management and SAP Library under Human Resources -> HR Tools -> Authorizations for Human Resources.
Vendor Master (General Section) Vendor Master (General Section)
This documentation is copyright by SAP AG.
Length: 3712 Date: 20240523 Time: 190639 sap01-206 ( 80 ms )
