- SAP Community
- Products and Technology
- Additional Q&A
- Switching roles
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Switching roles
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 10-23-2015 3:51 PM
Hey specs, I count on your help...
If a user has several roles assigned to him - how can he switch between the roles?
E.g. User1 has PFCG role assigned as a Customer Manager - with the authorization to operate with invoices - for that he has one flavor assigned as default screen and then he got also role within the company where he needs to record his time in CAT2 transaction - this is another role for him (HR assistant) with another flavor assigned to him on logon.
So my question is - how can the user switch between the roles to complete his tasks depending on the role?
Accepted Solutions (1)
Accepted Solutions (1)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hello Diana,
There is no switch between roles like you mentioned. Whatever the authorizations are given to users they can use those authorizations whenever they want. They donot need anything like switch etc.
SAP Authorization concept is not so. SAP authorizations rely on "Authorization Objects and their field values". Roles are only groups of authorization objects. They make the authorization concept simpler and maintenance easier. They are just for appearence.
SAP looks at whole authorizations.
Here is a script from training book.
"
When a user logs on to a client of an SAP system, his or her authorizations are loaded in the user context. The user context is in the user buffer (in the main memory, query using transaction SU56) of the application server.
When the user calls a transaction, the system checks whether the user has an authorization in the user context that allows him or her to call the selected transaction.
...
All authorizations are permissions. There are no authorizations for prohibiting. Everything that is not explicitly allowed is forbidden. You could describe this as a “positive authorization concept”.
"
So users can use all authorizations whenever they wants.
You can only restrict the usage of roles' transactions by unassigning the role from them.
Regards,
Yuksel AKCINAR
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Answers (0)
- Global filter definition for Country Compliance WTPA forms in Human Capital Management Blogs by SAP
- List of SAP-Default NACT Processing routines program in Enterprise Resource Planning Q&A
- SAP PaPM Cloud Universal Model: Deploy your environment via Manage Containers in Financial Management Blogs by SAP
- Quick Start guide for PLM system integration 3.0 Implementation in Product Lifecycle Management Blogs by SAP
- How to update SOW workers roles in Spend Management Q&A
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.