Skip to Content
avatar image
Former Member

ChaRM: Trusted RFC a must?

Hi!

1) Are the Trusted RFC a "must" within ChaRM approach, If Yes in which clients?

2) Which authorizations does the user for the RFC connection between SOLMAN and satellite system need (besides authorization object S_RFCACL)

Thank you very much!

Thom

Add comment
10|10000 characters needed characters exceeded

  • Follow
  • Get RSS Feed

2 Answers

  • avatar image
    Former Member
    Sep 09, 2008 at 06:14 AM

    Hi.

    I guess it's not mandatory but in most cases kind of annoying not to use Trusted RFC.

    One example is the action "Logon to System" which is performed from within a Change Document. User may logon to the system where he wants to perform developement in without being prompted for user name and password.

    Which basically is the answer to the question "in which clients?": all the ones you want to work in.

    As for RFC authorization:

    The users SOLTMW<SID><CLIENT> and SOLMAN<SID><CLIENT> for Non-Trusted RFCs are being generated and should get the correct profiles automatically.

    SOLTMW<SID><CLIENT>

    S_BDLSM_READ

    S_CSMREG

    S_CUS_CMP

    S_TMW_CREATE

    S_TMW_IMPORT

    SOLMAN<SID><CLIENT>

    S_BDLSM_READ

    S_CSMREG

    S_CUS_CMP

    The users who use Trusted RFC should have objects S_RFCACL and S_RFC.

    And of course all other authorizations they need for the work in the target system.

    Hope this helps.

    /cheers

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Former Member

      Hi.

      It's all about athorization. Someone needs a user AND auth. object S_RFCACL in the target system to use Trusted RFC for "system-hopping". Without that he/she will not be able to do so.

      So someone without user in PRD or someone with user in PRD but without appropriate authorization object will not be able to use Trusted RFC.

      And for all those who got an user in the target system(s) anyway why would you want to prevent those to use Trusted RFC system logon?!

      It's not hard to avoid unrequested system access this way.

      /cheers

  • avatar image
    Former Member
    Sep 24, 2008 at 08:26 AM

    Generate the RFCs from SMSY transaction fro every client involved in ChaRM. THis will assign the necessart roles automatically.

    Regards

    Farzan

    Add comment
    10|10000 characters needed characters exceeded