SAP CRM Mobile Authorization Management Tool 
Use
This tool enables you to define authorizations (access rights) for mobile client users for example, sales representatives to use a mobile client application such as Mobile Sales. You can define access rights to underlying objects, such as the application, business components, tile sets, tiles, business objects, and properties of business objects.
· You use this tool only for framework-based mobile client applications that are developed using the Mobile Application Studio.
· You do not have to change any part of the application code to define and provide access rights to mobile client applications.
Users of SAP CRM Mobile Authorization Management Tool (AMT) define authorizations in the form of roles for viewing, creating, modifying, and deleting business data in a mobile client application. During the runtime of a mobile client application, mobile client users can work with the mobile client application according to the roles assigned to them.
Integration
This tool must be installed on Mobile Development Workstation where authorization activities are performed.
If you want to: |
Install |
Access user interfaces and business-logic-related objects to define authorizations |
Mobile Application Repository (MAR) on the Mobile Repository Server
You must ensure that SAP Mobile Application Repository Central Service is running to enable this tool to connect to the MAR. |
View the details of the user interface and its business-logic-related objects in the Mobile Application Studio |
SAP Mobile Application Studio on the Mobile Development Workstation |
Store authorizations in the user database
|
User Database on the Mobile Development Workstation |
Send authorizations from the user database to consolidated database (CDB) |
ConnTrans on the Mobile Development Workstation |
Features
· Access Rights by Role
AMT allows you to define access rights to mobile client applications. You must assign these access rights to roles. These roles can then be assigned a single user or to multiple users. In addition, you can assign more than one role to a single user. The roles assigned to users determine their accessibility to business data within a mobile client application during runtime.
· Access Rights at the User Interface Level
AMT allows you to define access rights to various user-interface-related objects according to your business requirement. The requirements and corresponding access rights that can be defined for the related objects are listed in the table below.
Requirement |
Access Rights |
Related Object |
Provide access to an application |
Open |
Application |
Provide access to a business component, the tile sets that included in it, and to hyperlinks to these tile sets |
Open |
Business component |
Provide access to a tile set, the tiles included in it, and to hyperlinks to this tile set
|
Open |
Tile set |
Provide access to a tile to enable a mobile client user to create, modify, or delete business data in a tile |
Open, create, modify, or delete |
Tile |
· Access Rights at the Business Logic Level
You can define access rights for various business-logic-related objects according to your business requirement. The requirements and corresponding access rights that can be defined for related objects are listed in the table below.
Requirement |
Access Rights |
Related Object |
Restrict a mobile client user from viewing business data in a tile |
No access rights You must restrict access to the business object that is associated with the tile |
Business object associated with the tile |
Restrict a mobile client user from creating, modifying, or deleting business data in a tile (if it is not done at the user interface level) |
Create, modify, or delete |
Business object associated with the tile |
Restrict a mobile client user from viewing data in a control on a tile |
Normal, read-only, protected, or hidden |
Business object property associated with the control |
See also: