Start of Content Area

Process documentation Assigning Roles to Persons Locate the document in its SAP Library structure

Purpose

When you assign a person to a role in combination with an object (such as an organizational unit), that person receives the authorization to perform the tasks belonging to that role for that object.

You assign roles to persons in one of the Web applications that can be accessed from the start page. Role assignment takes place using the domino principle throughout the organizational hierarchy and the assigned processes.

Prerequisites

·        The roles have been created and activated (see Roles and Authorizations Concept).

·        The organizational hierarchy has been defined.

Process Flow

...

       1.      The power user automatically has authorization for the task Start Role Assignment Procedure. He or she starts the assignment procedure by choosing Role Assignment in the navigation area of the start page. The power user then assigns a person (or a user, if already available) to the role containing the task Assign Roles for Corporate and Next Level Down (ASGN-RLCOR).

¡        If the person entered does not yet exist in the system, the system issues a message, and an additional area appears in the middle of the screen. To create the person, choose Create Person.

Note

You can deactivate the option of creating a person using the IMG activity Restrict Authorization to Create Persons in Customizing for MIC.

¡        If a person does not yet exist for the user entered in the system, a person is created automatically.

       2.      The power user assigns a role with the task Create User (CREA-USRID) to a user that has already been created.

       3.      If the power user has created a person in the first step as opposed to assigning a user, a user must be created for that person. For more information, see Creating Users and Connecting Users to Persons.

       4.      The person who now has authorization for the task Assign Roles for Corporate and Next Level Down receives this task in their task list on the start page.

       5.      This person assigns persons or users to the role containing the task Assign Roles for Given Organizational Unit and Next Level Down (ASGN-RLORG). This step is performed for all organizational units occurring directly beneath the corporate group level in the organizational hierarchy.

       6.      If persons instead of users are assigned, users then have to be created for these persons (see step 3).

       7.      The persons who now have authorization for the task Assign Roles for Given Organizational Unit and Next Level Down receive this task in their task list on the start page. Subordinate organizational units or process groups can be on the next level down. For the process groups to be available, the processes need to have been accepted for the organizational unit in the meantime.

       8.      Subsequent role assignments follow the same principle all the way down the organizational hierarchy and across the assigned process groups, processes, process steps, and controls. However, you do not perform role assignment for a control in the Web application Assignment of Roles to Persons but instead in the Web application Documenting Controls.

 

 

End of Content Area