Even if key users (department users/application support) do not have to develop their own authorization objects and cooperation with SAP Basis is always advantageous, there are often technical questions such as "Which users have authorization to evaluate a specific cost center or internal order?
Using suggestion values and how to upgrade
An overview of the actual relevant information for your system landscape can be obtained from the application System recommendations in the Change Management section of the SAP Solution Manager (transaction SOLMAN_WORKCENTER or SM_WORKCENTER). This application will provide you with a recommendation for the SAP and non-SAP hints to be implemented for the evaluated systems.
As part of the SAP Access Control solution, the Business Role Management component serves the central role management. In addition to other useful functions, it also offers the automation of mass maintenance of role withdrawals. To do this, you must first place the organisational matrix in the customising (transaction SPRO), i.e. you enter the values or value ranges in the Organisation Level Mapping details area for the different organisation fields. At this point, however, you do not specify which reference roles should be derived for these organisational values.
Analysis and reporting tool for SAP SuccessFactors ensures order and overview
The difficulty in assigning permissions to the S_DATASET object is determining the correct values for the FILENAME and PROGRAMME fields. If you have not specified a path in the FILENAME field, only the files in the DIR_HOME directory will be allowed.
Are you sure that your compliance is always ensured when using your SAP system? Would you like to make SAP authorization assignment clearer and reduce the manual workload? Our SAP add-on apm creates simplified processes and thus more transparency in your existing SAP authorization management. Reduce administrative effort and ensure clarity in your compliance solution.
However, if your Identity Management system is currently not available or the approval path is interrupted, you can still assign urgently needed authorizations with "Shortcut for SAP systems".
In addition, you will of course need a P_ABAP for the relevant reports with the value COARS = 1.
As part of the maintenance of SAP authorizations (keyword "Authorizations for the execution of SAP Query (transaction SQ00 or own Z/Y transaction) and integration in the authorization concept and reporting" and "SAP Query: Authorization (organizational and technical)" a colleague asked me where in the SAP system for authorization objects and authorization field values a documentation on the authorizations to be maintained can be found, which is especially helpful for new authorization assignments or also when setting up "SAP Query as a customer-specific transaction with authorizations for table authorization group, tables and report transaction assigned" apart from the authorization concept of the institution to be maintained also for a better understanding of the SAP authorization system.