Big4Guy

Confessions, Thoughts, Observations and Musings of a Big4Guy

Big4Guy

Welcome to Big4Guy.com. Big4Guy is an online resource where I will share with you the latest news, insights, knowledge and some experiences as a Big 4 consultant. We will discuss some of the important issues which organisations are facing today in the areas of information security, security and controls in SAP R/3, Oracle Applications, J.D.Edwards, Peoplesoft and various other ERP's. You will also find information on latest complaince regulations like Sarbanes Oxley, Basel II and so on. Big4guy will also attempt to provide valuable resources for individuals interested in examinations the CISA, CISM, CISSP, PMP and various other security certifications considered essential for entry in any Big 4 accounting, auditing and consulting firms. You are invited to post your comments and viewpoints to posts here. I sincerely hope this online journal will be useful to everyone from a budding student to a professional in the accounting, auditing, management and consultancy professions.

Post details: Authorization Concept in SAP R/3 - How to define User Roles, Profiles and authorizations in SAP.

01/22/06

Permalink 09:27:24 pm, Categories: SAP R/3, 211 words   English (US)

Authorization Concept in SAP R/3 - How to define User Roles, Profiles and authorizations in SAP.

SAP R/3 uses a very complex mechanism to assign users access to system. SAP uses Authorization Objects to assign authorizations to users. An authorization objects works as a template for an authorization to be
defined. One point to note here is that there are a maximum of 10 fields per authorization object. For users to conduct an activity in SAP, their user profiles should satisfy the authorization check for each field in the authorization defined on a specific authorization object.

To take an example, if a user wants to create a new company code, the authorization object is F_SKA1_BUK - G/L Account: Authorization for company codes. User is given authorization to authorization object
mentioned above with the relevant fields. Authorizations in SAP are classified as General authorizations, Organizational authorizations or Functional authorizations. In our example above, authorization object
F_SKA1_BUK has been assigned to function for creating a general ledger master records. SAP can be configured to check authorizartions at the company code level, chart of account level, individual master record level so as to prevent user access. I will discuss more on SAP authorizations in my future posts.

More on SAP Controls >>

SAP R/3 Inherent Controls
SAP R/3 Configurable Controls
Securing SAP* User ID
SAP IMG Implementation Guide

Permalink Leave a comment

Comments:

No Comments for this post yet...

Official Websites

Categories


Archives

  • SAP GRC Virsa Rule Sets Updates
  • SAP MM Requirements for Setting up Plant
  • Lessons Learned Log for ASAP Implementation
  • SAP Solution Configuration Realization Phase
  • SAP MDM Master Data Import Manager Loading Data into SAP MDM
  • Compliance Calibrator SOD Conflicts Remediation Strategy
  • SAP Workload Analysis Monitor Tools ST03N
  • SAP BW Data Staging Basics Tutorial
  • How to Implement BW Infoobject Level Security
  • SAP BW Admnistrator Authorizations S_RS_ADMWB
  • BIW Reporting Auth Objects S_RS_COMP
  • SAP BW Security Authorization Objects for SAP BW
  • more...

    • Search

    Google

    Web Big4Guy.com

    September 2008
    Mon Tue Wed Thu Fri Sat Sun
    <<  <   >  >>
    1 2 3 4 5 6 7
    8 9 10 11 12 13 14
    15 16 17 18 19 20 21
    22 23 24 25 26 27 28
    29 30          

    Misc

    Syndicate this blog XML

    What is RSS?