The authorizations for circulars are maintained using the authorization object S_SRMDISP1. This has the following fields:

ID of the RMS for which the user is to have authorization.

ID of the element type for which the user is to have authorization.

Describes the possible activities that can be executed. These are:

• 01 Add or create: The user can create new circulars.
• 02 Change: The user can change circulars. This includes executing the steps of a circular.
• 03 Display: The user can display circulars.
• 06 Delete: The user can delete circulars. Because when you delete a circular, a process route is always deleted with it, the user must also have authorization for deleting process routes.
• 35 Show: The user can see links to circulars (the nodes in a record).

The authorization concept for a process route has three levels:

You can maintain authorizations using the authorization object S_SRMPATH1. The authorizations assigned apply for all process routes. The authorization object has the following fields:

Restricts the authorizations to limited activity areas of the process route.

An activity area is a name for an application that uses the process route. You can use the activity area to control the process routes for different applications separately.

If you are using the process route in a Records Management context (circular), use the activity area "SRMDP". If you are using the process route in a Case Management context, use the activity area "SCMG".

Describes the possible activities that can be executed. These are:

• 01 Add or create: The user can create new process routes and new process route items.
• 02 Change: The user can change existing process routes.
• 03 Display: The user can display process routes.
• 06 Delete: The user can delete process routes.

You can maintain authorizations in the header data of the process route. Authorizations assigned here are only valid for the process route of which you are currently editing the header data. In the header data, you can select which groups involved in the process route have authorizations for the change, add, and display activities, and you can enter any additional specific authorizations. For more information, see the field help for the individual fields.

The authorizations assigned in level 2 can restrict the authorizations assigned in level 1, but cannot extend them.

You can maintain authorizations when creating a process route item in the field Authorization Item. You assign this authorization to the person/s who you have entered as processors for the process route item. The authorizations are only valid for the time during which the process route item is processed. You can assign the following authorizations:

• Display: The user can display the process route.
• Change: The user can change all process route items. Changing includes deleting.
• Add: The user can add new process route items.
• No authorization: The user can neither display nor change the process.

The authorizations assigned in level 3 can both restrict and extend the authorizations assigned in level 2 for a process route item.