CRM Security

Dear board,

we have designed a SAP Role concept mainly for ECC purposes. This concept needs to be enlarged to cover SAP CRM 5.0 specifics and to detail any potential interfaces. I have been told that the CRM Access Control Engine is not used.

- What is the general impact of a business partner concept in CRM and the usage of the organisational structure? Where is the link to traditional ABAP based role concepts?

- I have been told that the PCUI has a somehow different authorization concept. Where is the authorization maintained?

- Do "channel authorizations" or other business partner relationships influence or complement ABAP authorizations? Comparable to structural authorizations in HR?

Kind regards and many thanks for your help,

Richard