Skip to Content
author's profile photo
Former Member

NAKISA : Flexibility of authorization management

Posted on Apr 29, 2011 at 01:12 PM 8 Views

Hi Experts,

Can the authorizations in Nakisa modules be managed independently from those defined in SAP Back-End/Portal knowing that SSO is needed ? Does it depend on the Nakisa module version ?

To provide more details : hereafter are the requirements. Is it possible with standard features ?

HR user authorization :

- In Back-End/Portal (ECC6.0 EhP4) : Restricted access based on structural authorization and filter on grade (No issue for that thanks to SAP)

- In Succession Planning (V3.0 SP1) with SSO : Same restricted access as in Back-End/Portal (No issue for that since from what I understand, authorization are leverage in NAKISA from SAP)

- In OrgChart (V1.1) with SSO : No restriction, every employee must be seen => Issue ?

Manager authorization :

- In Back-End/Portal : Restricted access based on structural authorization (No issue for that thanks to SAP)

- In OrgChart (V1.1) with SSO : Same restricted access as in Back-End/Portal => Issue/conflict with previous requirement for HR user authorization ?

Thanks for your help.

Cheers.

SAP ERP
Add comment
10|10000 characters needed characters exceeded

  • Follow
  • Get RSS Feed

2 Answers

  • Best Answer
    author's profile photo
    Former Member
    Posted on Apr 29, 2011 at 02:00 PM

    Hi Kevin,

    There are 5 roles assigned to different users in Nakisa,

    With Role Mapping you can link the Nakisa roles to SAP roles. The assignment to the SAP roles are at back of Admin guide.

    Executive /NAKISA/OM_COMMON

    IDESUS_EXEC_LINEMANAGER_MENU

    Everyone /NAKISA/OM_COMMON

    ROLE_EVERYONE

    Assistant /NAKISA/OM_COMMON

    IDESUS_ASSISTANT_LINEMANAGER_M

    HR (Human Resources)

    /NAKISA/OM_COMMON

    IDESUS_HR_ESS_MENU

    Manager /NAKISA/OM_COMMON

    IDES_HR_MANAGER

    When user accesses information that requires them to make a call to SAP, the connection string is used.

    Depending to how Nakisa is set up, the user name and password of the user will be used in this connection string.

    Hope this helps,

    Kind Regards,

    Matthew

    Add comment
    10|10000 characters needed characters exceeded

  • author's profile photo
    Luke Marson
    Posted on May 02, 2011 at 11:19 AM

    Hi Kevin,

    I am unsure exactly on your requirements and what your question is. If it is not resolved by Matthew's post then please let me know what issues you still have.

    Best regards,

    Luke

    Add comment
    10|10000 characters needed characters exceeded

    • Stephen Burr Former Member
      May 04, 2011 at 11:15 AM

      Hi Kevin,

      Absolutely yes to your questions.

      The security is independent in each module so you can set SP to use backend authorisations and have OrgChart to utilise Nakisa's roles to ensure they can see every employee.

      Stephen