- SAP Community
- Products and Technology
- Additional Q&A
- ERM Security and PFCG
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
ERM Security and PFCG
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 11-11-2010 4:16 PM
I'm curious if anyone has thought about the following and how to design around it. Our client is planning on using ERM full functionality and plans to allow role editing via PFCG within ERM. The problem is that those users need to have PFCG authorization to do this within the back end system. So my question is what is to prevent that user from just directly editing the role within the back-end system?
Additionally even if we find a way to take away securities backend PFCG access they will still need it to design roles for the on going future releases.
Any ideas would be appreciated.
Accepted Solutions (0)
Answers (3)
Answers (3)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
>
> Additionally even if we find a way to take away securities backend PFCG access they will still need it to design roles for the on going future releases.
>
> Any ideas would be appreciated.
Why would they need PFCG for ongoing projects? You can migrate your exisitng roles into ERM as it is. Although I would go with the idea given by Surpreet using firefighter for using PFCG roles if there is a reall need for it.
Thanks!
Chinmaya
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
another way ....... may be........ Lock PFCG in backend.
it can't be used directly in backend.
For design purpose have ZPFCG.
Regards,
Surpreet
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Yes this is possible.
In backend you must be having VIRSANH, means you have Firefighter (SPM) in backend (ABAP system)
please maintain all those users in Firefighters Owner table and make sure you had implemented SAP note 992200.
then those users can't login to SAP system in backend.............
however if this you think is not possible....... then create few User Ids and give them required access and maintain thos in Firefighter.
regards,
Surpreet
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Unleash the power of Business AI across your Cloud ERP environment! in Enterprise Resource Planning Blogs by SAP
- TRS_SEC_ACC default field for ftr_create (field VWSFHA-RLDEPO) in Financial Management Q&A
- Making tax digital SAP Business One - SSL Connection Issue in Enterprise Resource Planning Q&A
- Unlocking the Potential of Signavio Collaboration Hub – Variant Management in Technology Blogs by SAP
- Integration between SAP and One Identity in Technology Blogs by SAP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.