Skip to Content
avatar image
Former Member

Giving authorization for img

Hi experts

Can any one explain me how to give img authorization module wise. for example

for SD consultant should access only activity related to SD in IMG, So what can be the easiest process for it. Also it is possible to restrict them to display access ?

Awaiting for your great replies. Thanks for your help in advance

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Best Answer
    avatar image
    Former Member
    Jul 16, 2007 at 08:57 AM

    Hi Alex

    Thanks for your great reply !!!

    Can you please brief me how to create a project in IMG ?

    ( E.g. for SD module )

    Thanks for your help in advance

    Regards

    Sanjeev.S

    Add comment
    10|10000 characters needed characters exceeded

    • I usually use the same method as Alex Ayers described above, however you should always pay attention to the fact that in practically every role you create like this the authorization to change roles is automatically included.

      so when using this method, you should definately check every role for the typical S_USER_* objects etc.

  • Jul 16, 2007 at 08:00 AM

    The way I usually do it is first to create an IMG project for the area that I want to restrict it to. e.g. if I wanted to create an SD config role, I would create an SD project in the IMG which will allow me to build the role

    Once the IMG project is created in SPRO

    1. Run PFCG, create role & navigate to menu tab

    2. select menu option Utilities->customising auth

    3. Click on Add and select IMG project (note: this won't work if an IMG project is not defined). Select the project that you want to build a role for & it will pull in all the respective transactions within that project node.

    You will still need to maintain the auth objects but this can really speed things up.

    edited to add: you can restrict them to display access by ensuring that the underlying auth objects are display only. As much of the config is dependant on table access, a fair bit of it will be controlled by S_TABU_DIS so ensure that is actvt 03 only.

    Message was edited by:

    Alex Ayers

    Add comment
    10|10000 characters needed characters exceeded