2019 Feb 13 10:48 AM
Hey community,
I am looking for a function module with which I can select roles based on the contained authorization objects and ideally their characteristics. It should be possible to use this module locally as well as remotely. During my research I came across the following, but unfortunately they always have a negative aspect:
Do you know any other similarly functioning ones?
Thank you in advance for your answers/suggestions!
Yours sincerely
Tim
2019 Feb 14 10:34 AM
As a result of Colleen Hebbert's answer, I went through the possibilities in the SUIM again and finally ended up with this program RSUSRAUTH or function module SUSR_SUIM_API_RSUSRAUTH. Although in a second step I still have to determine the users who have the roles, but it comes closest to my expectations. (-> display the roles with their exact characteristics and even their status)
2019 Feb 13 1:11 PM
2019 Feb 14 12:30 AM
not sure if your research took you down this pathway, but maybe look at these programs as they are based on configuring of critical checks for roles
RSUSR008 Critical Combinations of Authorizations at Transaction Start
RSUSR008_009_NEW List of Users With Critical Authorizations
RSUSR009 List of Users With Critical Authorizations
2019 Feb 14 10:29 AM
Yes, I came across them, but since the entries change frequently, the variants would always have to be maintained.
2019 Feb 14 12:05 PM
HI Tim
glad you found an answer for what you are trying to do. Must admit, my mind jumps to SAP Access Control for Risk Analysis to define rulesets and execute Critical Actions or Segregation of Duties.
I'm unsure what you mean by entries changing frequently as the critical combination allows you to configure different scenarios to analyse unless that doesn't help with your remote options
Regardless, thanks for the update and closing out your question
2019 Feb 14 10:34 AM
As a result of Colleen Hebbert's answer, I went through the possibilities in the SUIM again and finally ended up with this program RSUSRAUTH or function module SUSR_SUIM_API_RSUSRAUTH. Although in a second step I still have to determine the users who have the roles, but it comes closest to my expectations. (-> display the roles with their exact characteristics and even their status)