In SAP systems, access to applications and services are based on an authorization concept that enables an administrator to assign authorizations to users.
When a client computer’s request is sent to an SAP Gateway system, the system checks whether the user that initiated the request has the relevant authorizations. SAP Gateway uses the standard SAP authorization concept, which is based on authorizations for specific authorization objects.
The assigned authorizations determine the actions that users can perform in an SAP system after they have been authenticated.
In this section you will find information on the following topics:
To create a role and assign it to users (user roles, administrator roles, or developer roles) proceed as described in Creating and Assigning Roles.
For general information about security functions and guidelines, see Secure Business with SAP on the SAP Service Marketplace at https://service.sap.com/security.