Background:
I am a very new SAP Portal administrator, and am currently setting up Portal roles and user groups. I am using the approach taught in the SAPEP class by SAP: Create roles and assign them to a user group, then add users to that user group. This is a common and very logical way to do things to keep user security relatively simple. And when you need to change the rights of a group, you just create the new role needed, assign it to the user group, and voila, all users in the group now have that role; no need to edit each individual user.
My Question:
Our SAP Portal is linked to SRM 4.0, which in turn is linked to SAP R/3. I was surprised to find that security in those systems is <u>not</u> currently done using groups; instead, each user is edited to add the necessary roles. I am not in charge of security in these other systems. I am, however, wondering if there is an SAP Help screen in either SRM 4.0 or SAP R/3 (we're on release 4.6c), or other official SAP document that clearly indicates that using user groups is considered best practice in these systems. I have looked pretty extensively, and have not found anything so far. Any help on this would be appreciated (including other Forums where this might be better posted).
Thanks,
kse