on 10-31-2014 8:35 AM
Dear Expert,
I wanted to give PFCG authorization modulewise. user1 able givee authorization to FICO only user2able givee authorization to SD only,
user2 able givee authorization to PP only
How can we restrict authorizations
Regards,
Sahil k
Hi Sahil,
first of all find out roles for SD or FI or MM as per srinivasan, download role corresponding from pfcg and then upload role for new client or create transport for role sends to target system.
after that you customize authorization object as per requirement.
Hope it helps.
Regards,
Dhuvaraganathan M.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sahil,
You can find the reconfigured Roles for all function modules in SAP. You will copy from standard roles and customizing as per your requirement.
For SD module you can search by name SAP*_SD*. or *SD*
For others module like MM, FI you can find by name SAP_MM* , SAP_FI* etc.
or get list of roles from function consultants.
Regards,
V Srinivasan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sahil,
A security person has the authorization to perform task such as managing roles and profiles.
These things, for eg, adding tcode in menu, which add auth objects to profiles cannot be segregated on what you are demanding. What you can try doing is following a nomenclature for different modules while creating and editing roles.
Not sure on your requirement, however, a security person should not restricted in such a way and giving access to PFCG to non-security user doesn't really makes sense to me.
Regards,
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
6 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.