on 02-21-2019 9:17 PM
In my company, we only have PLM system, MM module is not implemented.
I am working on authorization now, considering to put plant code value in ' user group' filed through SU01, insert S_USER_GRP in roles to differential plant authorization.
I know it will work for sure. However SAP Security gurus, I will need your opinion. Is there any risk behind?
Thank you!
Hi Iola,
just keep in mind that authorizing S_USER_GRP might open up acess in the user master transactions like SU01, etc. if users get access to it. I am not an PLM expert, but you might instead consider a custom authoriztion object.
Regards, Alessandro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Alessandro,
Thank you very much for the reply. I think you are right. Did a test, S_USER_GRP is only for user master maintenance. Need a custom authorization object... yes...
Thanks,
Iola
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
14 | |
4 | |
2 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.