Authorizations for Background Processing

Authorizations for accessing background processing jobs can be set up for two types of users: administrators and end users.

Give administrator authorization only to a small number of trustworthy employees. This level of authorization allows a user to:

Have unrestricted access to background processing jobs
Perform any operation on any job, including:
- Selecting jobs from all clients (from the Job Overview, Transaction SM37)
- Delete jobs
- Releasing jobs to start
- Changing jobs, including copying, canceling, checking, repeating, and capturing and debugging.
- Displaying jobs, job steps, and job logs
- Triggering events manually (transaction SM64)
- Editing system events
- Working with raised events in the event history (transaction SM62)
- Using restricted job classes A or B
- Scheduling an external program in a job.
- Maintaining SAP definitions for external commands

All users can schedule, cancel, delete, and check the status of their own jobs with no additional special authorizations. By default, a job runs under the authorizations of the user who scheduled it. Special user-level authorizations are needed for:

Any operation on a job scheduled by another user
Displaying the job log
Displaying a spool request generated by a background job
Releasing a job to start
Using an external command

A user's jobs are defined and run in the user's current logon client, regardless of whether the user's background processing authorizations are set for user or for administrator.

For complete information, see authorization object documentation from Transaction SU21.