-
Products and Technology
By Category
-
Groups
Activity Groups
Industry Groups
Influence and Feedback Groups
Interest Groups
Location Groups
Customer Only Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
Products
Learning and Support
-
- Products and Technology
- Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
- Explore SAP
-
Products
- Products
- SAP Business Suite
- Artificial Intelligence
- Business applications
- Data and analytics
- Technology Platform
- Financial Management
- Spend Management
- Supply Chain Management
- Human Capital Management
- Customer Experience
- SAP Business Network
- View products A-Z
- View industries
- Try SAP
- Partners
- Services
- Learning and Support
- About
- SAP Community
- Groups
- Interest Groups
- Application Development and Automation
- Discussions
- Re: Implementing SAP Security
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Implementing SAP Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2008 Feb 06 8:13 AM
- SAP Managed Tags
- Security
Hi,
For a new ECC implementation, what is the best strategy or approach to use in implementing roles and authorization? Is there a blueprint that I can use?
FYI, we are not implementing Virsa.
Your response is highly appreciated.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2008 Feb 06 8:24 AM
- SAP Managed Tags
- Security
>
> Is there a blueprint that I can use?
I doubt you'll ever find (a usable) one for free or on such a forum for that matter. Most of us earn (part of) our money designing them tailored to the customers' needs. I for one am surely not going to give examples away.
The best strategy will always be:
1- determine the needs in the company (what are the tasks for various people and which resources do they need to achieve their goals).
2- determine which data has to be secured.
3- draw a concept based on above information and have it validated by the business.
4- design taskroles (singles) per task and functionroles (composites) to group tasks into functions.
5- test both tasks and functions. The first test can be part of a unit test while the second one will be like an integration test.
People you need:
Functional consultants per module. They know about module-specific authorization stuff.
Business consultants and/or key users who know which processes there are and how they're divided over the various jobs/functions in the company
The (internal) auditors to tell you which information needs to be secured.
As you see this is not a one person job and the outcome will differ per company.
Jurjen
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2008 Feb 06 5:18 PM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2008 Feb 06 6:55 PM
- SAP Managed Tags
- Security
One thing to remember
Functional consultants MUST write a process design, this should be at TRX level and contain the needed restrictions from fucntional point of view.
The aforementioned should be the basis of the role design.
Bluesky