cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

HR and Netweaver Portal User Integration Issue

abdullahgunes
Participant

‎08-17-2017 12:05 PM - edited ‎02-04-2024 2:47 AM

0 Kudos

Hi,

We have a problem, i hope someone can lead me.

Our portal getting users on LDAP and we are creating same usernames on ECC for SSO. Also we are creating some second users for somebody. For example; My portal username is 123456 and we create same user on ECC for ESS user. But i am working at HR and i must have extra authorizations. For this reason we created a new user name like AA123456. In this case user 123456 have read authorization for XXXX infotype but AA123456 don't have.

What we can do for user deduplication or how can we distinguish user authorization?

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

rohit_singhal
Active Contributor
‎08-23-2017 11:39 AM
0 Kudos

Hi Abdullah,

For your scenarios, you do not need multiple user ids for the same person.

If you want to restrict access to certain infotypes and transactions, then you can create your own roles and provide authorizations for individual infotypes and transactions in the roles.

This way, you can modify access of any user by assigning them various roles (for eg: Create a role with payroll read access, another role for general data read access) as per your requirement.

Do let me know in case you face any further issues.

Best Regards,

Rohit

Show replies
Show replies
abdullahgunes
Participant
‎08-17-2017 8:45 PM
0 Kudos

Hi Colleen,

In case, portal user (123456) have payroll read role for see only his pay stub. When he login in to R3 with this user , he can see all other pay stubs. But he is not working in the payroll department. He should not see the others with this user.

For these reason we are creating two different user.

How can we resolve this issue, do you have any suggestions ?

Thanks for replying.

Show replies
Show replies
Colleen
Advisor
Advisor
‎08-23-2017 12:23 PM
0 Kudos

You need to restrict users to p_pernr for their data instead of p_orgin/p_orgincon

You have a risk if you think that 2 Ids will solve your risk

Suggest you search for HR authorisation concept

Colleen
Advisor
Advisor
‎08-17-2017 12:28 PM
0 Kudos

why do you need two User Ids to begin with? Why can't you just have extra roles?

Show replies
Show replies
Ask a Question