AW: Subsitute Authoizations/profiles/roles
NAT GOVENDER
NAT at tac.toyota.co.za
Wed Apr 24 08:15:00 EDT 2002
Hi Mark,
I forgot to mention that we have certain check to ensure the that =
initiator of the document cannot release the document even if he/she is =
the substitute.=20
>>> Stephan.Becker.ext at mchw.siemens.de Wednesday, April 24, 2002 12:01:22 =
PM >>>
Mark,
this would go against one of the prime design principles of the SAP
authorisation concept. Authorisations are allocated to the user, and when
you arrange a substitution, the substitute should not have access to more
functions automatically, otherwise you could use that to circumvent =
explicit
assignment of authorisations. I would not recommend not to try to automate
this process, as you would no doubt get into trouble during an audit =
unless
you log the changes very carefully and keep a full audit trail and inform
people that this automatic stuff has happened and....
Hth,
Stephan
-----Urspr=FCngliche Nachricht-----
Von: mark narra [mailto:mark_narra at mail.com]=20
Gesendet: Dienstag, 23. April 2002 21:49
An: SAP-WUG at MITVMA.MIT.EDU=20
Betreff: Subsitute Authoizations/profiles/roles
WF folks,
When a User substitutes another user in SAPinbox/Workplace,
authorizations/roles does not seem to get substituted to the new user. =
Looks
like it will be have to manually added by the security person. Doesn't =
sound
too good.
We are currently maintaining roles/authorizations at user-level. Is there
any user-exit that we can use to do the custom stuff?
Suggestions appreciated.
Mark.
--
_______________________________________________
Sign-up for your own FREE Personalized E-mail at Mail.com
http://www.mail.com/?sr=3Dsignup
More information about the SAP-WUG
mailing list