Authorizations
SAP Learning Solution component uses the authorization provided by the SAP Web Application Server. Therefore, the security recommendations and guidelines for authorizations as described in the SAP Web AS Security Guide ABAP and SAP Web AS Security Guide Java also apply to SAP Learning Solution.
The SAP Web Application Server authorization concept is based on assigning authorizations to users on the basis of roles. For role maintenance, use the profile generator (transaction PFCG) on SAP Web AS ABAP and the User Management Engine’s user administration console for SAP Web AS Java.
Standard Authorization Objects
The following table shows the security-relevant authorization objects that are used by the SAP Learning Solution.
Standard Authorization Objects
Authorization Object |
Field |
Value |
Description |
P_ORGIN |
HRPnnn |
PD Infotype Framework: course, course types, and course groups |
Used to determine and check a user’s authorizations at the level of HR master data |
P_APPL |
|
|
Used to control read and write authorizations for Applicant Management infotypes. |
PLOG |
|
|
Used at the level of Personnel Planning data to specify the types of information a user may receive. |
Standard Roles
The following table shows the standard roles that are used by SAP Learning Solution. For more information, see User Management.
Standard Roles
Role |
Description |
SAP_HR_LSO_ACCOUNTINGADMIN |
Training accounting |
SAP_HR_LSO_AUTHOR |
Course author or instructional designer |
SAP_HR_LSO_COURSEPLAYER |
User of the Content Player |
SAP_HR_LSO_DEVELOPMANAGER |
Personnel Development Manager Training |
SAP_HR_LSO_FOLLOWUPADMIN |
Course follow-up |
SAP_HR_LSO_HR-MANAGER |
HR Manager Training |
SAP_HR_LSO_LEARNER |
Learner |
SAP_HR_LSO_MANAGER |
Manager |
SAP_HR_LSO_PARTICIPADMIN |
Participation administration |
SAP_HR_LSO_RESOURCEADMIN |
Manage resources |
SAP_HR_LSO_SPECIALIST |
System Specialist Training |
SAP_HR_LSO_TRAININGADMIN |
Training Administrator |
SAP_HR_LSO_TRAININGMANAGER |
Training Manager |