06-22-2010 11:13 AM
Dear all,
I am quite new to SAP Sec, I have modified an existing derived role to add additional authorization and generated proflie and then transported to a other system.
But when I check in the test system, The Authorization tab has a warning symbol with yellow color and profile field is empty. Please advise, I have missed anything ?
Regards,
Soyunee
Edited by: soyunee on Jun 22, 2010 3:45 PM
06-22-2010 1:13 PM
Hello Soyunee,
sorry but may I suggest, that you first check the documentation before you start to perform system changes?
As Alex mentioned already, what you did is not intended. Please refer to the defintioon of derived roles, for instance at [Online docu|http://help.sap.com/saphelp_nw04/helpdata/EN/1c/c38028816c11d396bc0000e82de14a/frameset.htm]
b.rgds, Bernhard
06-22-2010 11:44 AM
Hi,
What change did you make? Was it an org level or did you add/remove auth object or field value?
If you changed anything other than the org level then the warning is to tell you that the derived role is inconsistent with the parent and you need to update the parent, distribute the changes to ALL the roles derived from it and transport them.
06-22-2010 1:13 PM
Hello Soyunee,
sorry but may I suggest, that you first check the documentation before you start to perform system changes?
As Alex mentioned already, what you did is not intended. Please refer to the defintioon of derived roles, for instance at [Online docu|http://help.sap.com/saphelp_nw04/helpdata/EN/1c/c38028816c11d396bc0000e82de14a/frameset.htm]
b.rgds, Bernhard
06-22-2010 5:13 PM
Soyunee,
First of all why are you changing the derived role directly? Any authorization changes should be done in master role and pushed down to derived roles.
Yellow fields obviously it would be open fileds. See to that when you generate all field are green. Then finally do user comparsion,then only the profile gets added to the user id. and then transport.
Note: Values need to come from Su24. In auth tab you should not have manual & change objects.
Thanks,
Sri