topic Re: Authirization profile in Application Development and Automation Discussions

Authirization profile

Former Member — Wed, 06 Feb 2008 07:34:22 GMT

generally we used PFCG for generating profiles in Roles as per the transaction codes and reports included.

but we have some standard following authorization profiles.

S_A.SYSTEM

S_A.ADMIN

S_A.CUSTOMIZ

S_A.DEVELOP

S_A.USER

now my question is how to use above profiles ? bcoz as i know, it is not suggestable to assign profiles directly to user master records.

So, manually added profiles will be deleted while doing user compare.

can we able to use above profiles in ECC5 and ECC6 ? if so how can we use?

Ple let me know indetail.

Thnaks Nag

jurjen_heeck — Wed, 06 Feb 2008 08:34:20 GMT

You could consider creating roles based on these profiles.

Create an empty single role

Go to the authorizations, do not select a template

Menu: edit->insert authorizations->from profile

Select the profile and now you have a role.

After this you will have to abandon your original profiles and do maintenance in the newly created roles to avoid version issues.

former_member74904 — Wed, 06 Feb 2008 08:41:16 GMT

the easiest thing to do this, is to create a role for these profiles.

you can do that in PFCG (insert authorization--from profile).

I'm assuming you're not using these profiles in a productive environment? the S_A.SYSTEM profile is far too extensive for use in production systems.

Edited by: Dimitri on Feb 6, 2008 9:41 AM

jurjen_heeck — Wed, 06 Feb 2008 08:46:36 GMT

> h6. edit: once again. too slow..

Don't you just hate it when that happens? I know the feeling.......

former_member74904 — Wed, 06 Feb 2008 09:13:41 GMT

Jurjen wrote:
Don't you just hate it when that happens?  I know the feeling.......

it's the price we pay for being fanatics )