on 08-12-2008 6:22 AM
Hi All,
For EWA my Tusted System Connection is failing with No authorization to log on as a trusted system.
Although i know i need S_RFCACL authoriztaion object but how should i assign it to user? do i need to create Role in PFCG? if yes then how should i add this object in that Role?
One more thing i found that there is SAP_S_RFCACL role present, is this Role enough for S_RFCACL authorization object or its different. I tried assigning SAP_S_RFCACL role to user but still its not working.
Thanks,
Hello Amit,
There is a concept called trusting system and trusted system. When we create a Trusted RFC connection, this Trusting and Trusted concept plays most important role. The source system will the Trusted system and the destination will be the Trusting system.
For example, from PRD to DEV you are creating a Trusted RFC connection, which doesn't require a usre name and password, the PRD will become Trusted system and DEV will become Trusting system.
Try performing the following steps to recreate the Trusted RFC connection between the system.
On the Trusting System
1.Create the Trusted RFC connection in sm59
a. RFC destination = <trustedSID>TRUSTED
b. Connection Type = 3
c. Description = SID Trusted System
d. Click save
e. Target host= <hostname of trusted system)
f. Enter System #
g. Click save
2. Create the Trusted System
a. smt1
b. Click create
c. Enter the name of the rfc connection created in step 1
d. Enter the client, userid, and password information
On the Trusted system
1. Create an RFC connection (sm59 create)
2. RFC Destination = <trustingSID>CLNT<trustingclient#> ex. CKDCLNT500
3. Connection type = 3
4. Description = <trustingSID> Client <trustingclient#>
5. Save
6. Enter Target Host and System Number information
7. Click Logon Security Tab
8. Trusted system= yes
9. Enter language and client information
10. Check the current user option
11. Save
Hope it is helpful.
Regards,
Satish
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
In PFCG just copy SAP_S_RFCACL to a role in customer name space (ZSAP_S_RFCACL or whatever)
After that maintain the newly created role. Adjust role/authorization objects by your needs, generate profile and assign role to the users who should be able logon to the system using a trusted rfc connection.
Be sure to make a user comparison.
/cheers
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
98 | |
11 | |
11 | |
10 | |
10 | |
8 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.