Skip to Content

New gateway server and security role/catalog considerations

Dec 18, 2017 at 11:51 PM


avatar image

Hi all,

We are in S/4 HANA 1610 release FPS1. We currently have both the backend system S/4 and gateway in same system. Our company is planning to move the gateway service completely to a new server for future purposes where there may be many more backend systems connected to it that will use FIori. Currently it is ONLY S/4 using Fiori.

Our existing security roles are built with both the Catalog/Group ID and the associated backend tcodes.

1.What are the consideration that should be made before this move?

2. How should I separate out the roles between backend and Fiori.

3. Will I need to build one role in backend for authorization and 1 role in Fiori for Tile visiblility? Should it be a 1:1 mapping?

4. Will I need to create 2 user ID's exactly same one for Gateway and 1 for backend?

5. How should I migrate the catalogs and Groups with Target mappings into new system.It also includes 1 language translation transports.

6. We have total of 30 Catalogs with 1:1 mapping of Master role. How long would it roughly take for the role to be separated and built? SHoudl I also scrap the backend role and remove the Catalog ID associated to it?

Could somebody help me to get a better understanding on this one please?



10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Lakshmi Priya Dec 20, 2017 at 06:18 PM

Any thoughts please on how it works with different gateway server?



10 |10000 characters needed characters left characters exceeded