cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

ChaRM security control on action

Go to solution
Former Member

on ‎10-06-2010 12:21 AM

0 Kudos

Hi,

In the correction process, we have Developer to set a correction into 'in development' status & have Change Manager to set this correction into 'to be tested' status. There are two actions between status 'in development' & to be tested'. They are 'release transport requests' & 'pass to test'. However, security is not able to control down to the action level. It is only able to control the status level (with the authorization code to each of the status).

Status 'in development'

Release Transport Request

Pass To Test

Status 'to be tested'

So, we have a situation that a developer has access to set 'in development 'that allow them to create transport & tasks; however, they also have access to Release Transport Request. This is problematic due to our auto schedule import (every 15 minutes) from dev to qa environment.

It appeared that the authorization will control the action leading to the status change - action to perform 'pass to test' will fail due to status change.

This is standard SAP out of box correction flow. How was intended to be used?

Thanks

Kalven

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎10-06-2010 7:25 AM
0 Kudos

Hi,

please check the following note:

[1002541 - Extended authorization checks: Single tasks|https://service.sap.com/sap/support/notes/1002541]

Regards,

Christoph

Show replies
Show replies

Answers (2)

Answers (2)

Former Member
‎11-04-2010 8:34 PM
0 Kudos

Hi,

The note 1002541 already in our system due to our Support Pack version. however, it still need to be activated.

Once we select and executed "Check for special authorizations for individual tasks in Service Desk" under Extended Authorization Checks of Transaction: /tmwflow/config_lock, we were able to restrict task "Release Transport Request" from a ChaRM Correction.

Thanks,

Kalven

Show replies
Show replies
Former Member
‎10-18-2010 4:36 PM
0 Kudos

Hi,

Thanks for sharing Note 1002541 - Extended authorization checks: Single

tasks.

According to the note, we have applied the following:

Object Authorization /TMWFLOW/D (Task in Development Systems)

--> Authorization field: /TWMFLOW/T

--> Value: not to have 3000 (Release Transport Request)

However, it still does not restrict access on "Release Transport

Request" action

Does anyone able to restrict the action of Release Transport Request under In Developement status?

Thanks,

Kalven

Show replies
Show replies
Ask a Question