The table below shows the security-relevant authorization objects that are used by the SAP Business Partner.
Standard Authorization Objects
Authorization Object |
Description |
Business Partner |
|
B_BUPA_ATT |
Authorization Types: With this authorization object, you can define authorizations for any number of input fields in business partner maintenance. You determine which business partners may be maintained, depending on the field values. In Customizing you define an authorization type and specify the names of the fields that should be checked. |
B_BUPA_FDG |
Field Groups: With this authorization object you can define authorizations for individual field groups in business partner maintenance. You thereby define which fields in business partner maintenance can be maintained or viewed by a user. |
B_BUPA_GRP |
Authorization Groups: With this authorization object you define which business partners can be edited on the basis of the authorization group. |
B_BUPA_RLT |
Roles: With this authorization object you define which Business Partner roles can be edited. |
B_BUPR_BZT |
Relationship Categories: With this authorization object you establish which relationship categories can be processed. |
B_BUPR_FDG |
Relationship Field Groups: With this authorization object you can define authorizations for individual field groups in business partner relationship maintenance. You thereby define which fields of the business partner relationship can be maintained or viewed by a user. |
Payment Cards |
|
B_CARD_SEC |
Authorization Encryption Card Master: You can use this object to regulate authorization for display and/or maintenance of payment card master data. With this object, you control the authorization for the encryption or decryption of payment card data. |
B_CCARD |
Payment Cards: You can use this object to regulate authorization for display and/or maintenance of payment card master data. |
The data of the SAP Business Partner is stored in the database of the SAP system. The security of data in SAP Business Partner is guaranteed by the general authorization concept of SAP Business Partner, which uses the authorization objects that were mentioned in the section - Standard Authorization Objects - before.
The security of sensitive data such as payment cards can additionally be protected by using encryption.
Further information on how to enable the encryption can be found in the SAP Implementation Guide (IMG) under Cross-Application Components → Payment Cards → Maintain Payment Card Type.