How to avoid create many roles

Former Member · ‎05-08-2009

Hello!

I have an issue on how to create roles.

I have 300 shops and each user will be authorised (by document type in Purchase Requisition)

to make requisitions only for his shop.

Can i somehow use the authorization object for PR and not create 300 roles( one per shop?)

Is there a way to add an auth object value to user profile?

Thank you!

sdipanjan · ‎05-08-2009

Hi,

As per the given information, it seems there will be 300 employees for this work!!!!!

Please let me know if Yes, else let me know how many employees are going to work their.

Regards,

Dipanjan

Former Member · ‎05-08-2009

If you can build one role for the task in the shop and are sure that the roles will be identical accross all the shops, then Derived Roles is an option if you can find an object which is consistently used by the transaction(s) and differentiates for an organizational field which relates to your 300 shops.

Cheers,

Julius

Former Member · ‎05-08-2009

bowing to julius.

try to determine whether you could use purchasing groups as an organizational distinction for the different shops. i strongly recommend that. then proceed as julius adviced and create derived roles, where the only diffrerence might be the purchasing group.

sdipanjan · ‎05-08-2009

Hi,

As a SAP default field, Doc. Type should not be changed to Org. level. And if you are not hiring 300 people to maintain each document type separately (which is itself a foolish idea) please put more concentration to segregate user access by "Purchasing Group", "Purchasing Organization".

1. create roles for different "Purchasing Group", "Purchasing Organization" first. (say 10 roles)

2. for each set of those 10 roles, you just clone them for different doc types (as far as required).

1 role for each doc. type: this level is granularity is not so important from risk point of view.

Regards,

Dipanjan

Former Member · ‎05-22-2009

ok