Assign authorizations (SAP Library - IDoc Interface / Electronic Data Interchange)

Assign authorizations

Profiles contain authorization objects for defined areas. In this activity you generate a profile and allocate these users. Also note the documentation on Profile Generator (transaction PFCG). You must only enter the transactions or menus and the relevant profiles are automatically created.

SAP delivers roles that affect the IDoc interface.

SAP_BC_USER_AG (with IDoc lists)

SAP_BC_SRV_EDI_ADMIN_AG (port, partner, monitoring, IDoc administration)

SAP_BC_SRV_EDI_DEVELOPER_AG (all IDoc functions)

Each of the three groups is contained in a corresponding composite role SAP_BPT_USER, SAP_BPT_ADMIN or SAP_BPT_DEVELOPER which is valid for the areas workflow, Business Workplace and IDoc Interface.

Activities

1. Check the roles using transaction PFCG.

2. If the roles are not sufficient, you must create new groups according to your requirements. If you want to assign authorization objects by hand (therefore no transactions or menus) then you must see the section below on authorization objects.

Notes on transport

Note the

documentation on transaction PFCG.

Authorization objects

The following list shows which authorization objects are checked by the individual functions of the application. They belong to the object class "Basis - central functions".

Function Authorization object

IDoc display	S_IDOCMONI
Access to IDoc functions	S_IDOCCTRL
IDoc development	S_IDOCDEFT
Partner profiles	S_IDOCPART
Port definition	S_IDOCPORT