Skip to Content

How to reuse authorization object (S_WFAR_OBJ) in a user role?

I've a requirement to restrict access to documents of a particular Archivelink content repository for some users. For a defined content repository and a specified document type, the user should only have read permissions. He should not be able to upload any documents to that content repository. However, the correct existing authorization object for that is S_WFAR_OBJ.

My approach was:
1) Create a new role and add the auth object manually in the "Authorizations" section. I've done it with auth object "S_TCODE" and "S_WFAR_OBJ".
2) Generate the profile and assign it to a user.

Unfortunately, this seems to be the wrong way. It looks like it has no effect at all. The user can't even access the entered transaction in TCD of S_TCODE which leads me to think that this authorizations are not evaluated?

What is the correct ways to reuse S_WFAR_OBJ for a role?
Thanks!

capture.png (131.7 kB)
Add a comment
10|10000 characters needed characters exceeded

Related questions

0 Answers

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.