https://community.sap.com/t5/application-development-and-automation-discussions/function-group-function-modules-approvals/m-p/7270694#M1530066 <HTML><HEAD></HEAD><BODY><P>Well you should test function groups and function module coding as per your normal procedures. They are widely used.</P><P></P><P>Whether they are accessible depends on your roles, right?</P><P></P><P>Which release are you on?</P><P></P><P>Prior release 7.01 you can only control at function group level with object S_RFC.</P><P></P><P>Subsequently you can use RFC_TYPE 'FUNC' to control at module name level if FUGR fails.</P><P></P><P>Luckily, this check is central and to my knowledge only one developer ever hardcoded it for list outputs, so you should be okay to convert for manual authorizations.</P><P></P><P>For standard ones from the menu, you will need to deactivate S_RFC (there is not option to un-merge, unfortunately..........). Easiest is to get the names from the menu and paste them into the manual authorization, or use a Su24 "dummy" for the role or scenario.</P><P></P><P>Dummy's are usefull workarounds and protect you against upgrades as well... (when SAP adds a load of stuff because GRC needs it, and then toasts your roles, sets active auths to inactive and adds new ones which are merged automatically...)</P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Wed, 15 Sep 2010 22:44:56 GMT Former Member 2010-09-15T22:44:56Z https://community.sap.com/t5/application-development-and-automation-discussions/function-group-function-modules-approvals/m-p/7270693#M1530065 <HTML><HEAD></HEAD><BODY><P>Hi, </P><P></P><P>We have couple of function modules related to RFC / BAPI in QA we need to give approvals before we move them to production. </P><P></P><P>What precautions do we need to take before approving? </P><P>How to segregate Function groups / Function modules? </P><P></P><P></P><P>Thanks, </P><P>Ram</P></BODY></HTML> Wed, 15 Sep 2010 21:22:59 GMT https://community.sap.com/t5/application-development-and-automation-discussions/function-group-function-modules-approvals/m-p/7270693#M1530065 Former Member 2010-09-15T21:22:59Z https://community.sap.com/t5/application-development-and-automation-discussions/function-group-function-modules-approvals/m-p/7270694#M1530066 <HTML><HEAD></HEAD><BODY><P>Well you should test function groups and function module coding as per your normal procedures. They are widely used.</P><P></P><P>Whether they are accessible depends on your roles, right?</P><P></P><P>Which release are you on?</P><P></P><P>Prior release 7.01 you can only control at function group level with object S_RFC.</P><P></P><P>Subsequently you can use RFC_TYPE 'FUNC' to control at module name level if FUGR fails.</P><P></P><P>Luckily, this check is central and to my knowledge only one developer ever hardcoded it for list outputs, so you should be okay to convert for manual authorizations.</P><P></P><P>For standard ones from the menu, you will need to deactivate S_RFC (there is not option to un-merge, unfortunately..........). Easiest is to get the names from the menu and paste them into the manual authorization, or use a Su24 "dummy" for the role or scenario.</P><P></P><P>Dummy's are usefull workarounds and protect you against upgrades as well... (when SAP adds a load of stuff because GRC needs it, and then toasts your roles, sets active auths to inactive and adds new ones which are merged automatically...)</P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Wed, 15 Sep 2010 22:44:56 GMT https://community.sap.com/t5/application-development-and-automation-discussions/function-group-function-modules-approvals/m-p/7270694#M1530066 Former Member 2010-09-15T22:44:56Z