on 02-21-2014 11:02 AM
Hello,
Recently I have changed auth/rfc_authority_check to value 9.
Value "9" -> Technical RFC check active, also in case of single sign-on procedure and for function group SRFC. Since the authority check is then also performed for function modules RFC_PING, RFC_SYSTEM_INFO and all other function modules contained in function group SRFC, the user profiles of all involved users must be checked/updated before using this option.
Anyway, I created a backup role where it has been added SRFC function group in the S_RFC function object.
As expected, I am getting the dump:
Category Installation Errors
Runtime Errors RFC_NO_AUTHORITY
Date and Time 19.02.2014 12:20:42
..............
The RFC authorization object is S_RFC.
I added the role to one user, and it did not generate any dumps afterwards.
Now, I would like to know how can I add this role to all users that can generate an RFC ( system, dialog users, all )
How can I check all the users that can erect an RFC and add this role ?
Thanks in advance,
Jordan
Hi
Function group SRFC only contain a small number of technical functions, that are not generating a big security risk.
Not that much to restrict from a user perspective but can be useful if you want to fully secure your system especially from external systems or for technical users.
If you have defined a base role for all users I think it is safe to add the S_RFC object to that role.
Regards
Functions contained in function group SRFC
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
83 | |
24 | |
12 | |
9 | |
7 | |
6 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.