All functions in the CTS are safeguarded by detailed authorization checks.

With the help of authorizations, you can specify whether a user may perform administration functions and which request types this user can edit.

SAP provides roles for the different CTS user types. Each role has the appropriate authorizations for the different CTS activities. In most cases it is sufficient to set user authorizations by assigning roles. You can use the role maintenance transaction (PFCG) to change the authorizations of roles for your own requirements, or to create new roles.