CTS Roles and Authorizations
CTS uses the authorization concept provided by SAP NetWeaver AS for ABAP. Therefore, the recommendations and guidelines for authorizations as described in the SAP NetWeaver AS Security Guide ABAP also apply to CTS.
The SAP NetWeaver authorization concept is based on assigning authorizations to users based on roles. To create and edit roles, use the profile generator (transaction PFCG) on AS ABAP.
Assign the roles that correspond with the requirements of the tasks that users must perform.
Alternatively, if the roles do not suit your requirements, you can run an authorization trace to find out which authorizations are needed by your users. For more information, see Analyzing Authorizations Using the System Trace.
Standard Roles
The table below shows the standard roles that are used by the CTS:
| Role Name | Short Description | More Information |
|---|---|---|
| SAP_BC_CTS_ADMIN | Administration/support role for the Change and Transport System (CTS) |
Note This role is deprecated. Use role SAP_BC_TRANSPORT_ADMINISTRATOR
instead.
|
| SAP_BC_CTS_DISPLAY | Display role for the Change and Transport System | This role contains authorizations for the following functions:
This role is required to be able to check transport errors. |
| SAP_BC_TRANSPORT_ADMINISTRATOR | Administration in the Change and Transport System | Transport Administrator |
| SAP_BC_TRANSPORT_OPERATOR | Perform transports | Transport Operator |
Standard Authorization Objects
- S_CTS_ADMI
Is used to safeguard administration functions in the CTS.
- S_TRANSPRT
Is used to safeguard functions that display and change transport requests and tasks.
More information
- Authorization Objects in the CTS
- For more information about how to create roles, see Role Administration.