cancel
Showing results for 
Search instead for 
Did you mean: 

Authorization concept for the operating SAP staff after Go-live

Former Member
0 Kudos

Dear all,

we are implementing SAP FI and CO. We will have three systems (development, Quality, Production).

1)Customizing is supposed to be done in development only. However, we will need to be able to view the customizing in the production client as well. What is best practice to achieve this? Is there a role /authorization object which only can configure "IMG-allowed to read"?

in the development client, we will need to distiguish the following roles: developer including transports, customizer, and authorization administrator.

2) Are there any SAP standard roles with which you can distinguish these roles?

thank you very much for your support.

best regards Timo

Accepted Solutions (0)

Answers (2)

Answers (2)

JozsefSzikszai
Active Contributor
0 Kudos

hi Timo,

if customizing is display or change mode, it depends on client settings. If client is NOT set to C (Customizing), than you cannot change anything in SPRO of that client.

hope this helps

ec

Former Member
0 Kudos

There is no standard IMG display only role.

Even with all of the SOX requirements out there so I guess you will need to build this from scratch.

You also need to make sure you look at all of the information and not just at a t code level as you need to make sure the authorization levels are display rather than maintain.