on 10-13-2008 9:51 PM
hi frds,
can some one expalin me the authorizations in hr?
how the authorization flow works? like do we need to first create profiles, and then assign these to administrators? and when do u roles come in place?
iam very confused.
It would be very greatful if some one can explain me the flow, of where to start and where to end in creating authorizations ?
Thank a lot.
Hi,
Users must be created and roles assigned to user master records before you can use the SAP System.
A user can only log on to the system if he or she has a user master record. A user menu and authorizations are also assigned to the user master record via one or more roles.
Roles are collections of activities which allow a user to use one or more business scenarios of an organization. The transactions, reports and Web-based applications in the roles are accessed using user menus. User menus should only contain the typical functions in the daily work of a particular user.
The integrity of business data is also ensured by the assignment of roles. Authorization profiles are generated which restrict the activities of users in the SAP System, depending on the activities in the roles.
Please look at the below link for more info on Roles.
http://help.sap.com/saphelp_47x200/helpdata/en/52/671595439b11d1896f0000e8322d00/frameset.htm
Make sure to go througfh the different links on the lefthand side of the screen to know more about User and role maintenance.
Regards,
Swapna.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi swapna,
now iam clear about the roles, just few more questions?
1.do we need to create users individually in all clients like in dev and live?
2.structural authorizations are maintained soley for the organizational units change,dispaly access.... and roles are used to assign authorizations for tcodes,reports etc................
just correct me if iam wrong.
Thanks.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Novice,
1.do we need to create users individually in all clients like in dev and live?
Answer is no you dont need to create them individually.There is sth like CUA(central user administration) where you will create users in one place and propagate them to all the other systems
Thanks
Bala Duvvuri
Hi swapna,
now iam clear about the roles, just few more questions?
1.do we need to create users individually in all clients like in dev and live?
2.structural authorizations are maintained soley for the organizational units change,dispaly access.... and roles are used to assign authorizations for tcodes,reports etc................
just correct me if iam wrong.
Thanks.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Based on the roles you played by particular use authorizations will be given
Best Regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi swapna,
tahnks for the reply?
now iam clear about authorizations,then when do roles come in place?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Authorizations control system usersu2019 access to system data and are therefore a fundamental prerequisite for the implementation of business software. In Human Resources, authorizations play a significant role since access to HR data must be strictly controlled.
There are two main ways to set up authorizations for mySAP Human Resources:
You can set up general authorizations that are based on the SAP-wide authorization concept or you can set up HR-specific structural authorizations that check by organizational assignment if a user is authorized to perform an activity.
Please refer the following link for more information on Authorizations in SAP HR.
http://help.sap.com/saphelp_47x200/helpdata/en/97/27973b3ea3eb0fe10000000a114084/frameset.htm
In Authorizations, the most important thing is to detremine WHO needs WHAT kind of access (view, edit etc) to WHICH data.... If you can determine the three highlighted parts, you are almost set to set up authorizations.
I hope this is helpful. Please award points if satisfied.
Swapna.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
108 | |
12 | |
11 | |
6 | |
5 | |
4 | |
3 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.