Role Templates for ERP Scenarios
You must create roles for SAP ERP scenarios and assign these roles to the ERP GSDO group. The SAP Gateway ERP users should be assigned to these roles so that they can use SAP Gateway services. For this:
Identify the list of SAP ERP systems on which the functionality should be accessible by SAP Gateway.
Create system alias for each of these systems.
For each of these systems, define a role for which the administrator should assign the list of users (who has access to execute the functionality)
NoteYou must be an SAP Gateway administrator or have an SAP user administrator to create the roles.
The roles must be defined/created on the SAP Gateway server.
If there is only one SAP ERP system and all the users on SAP Gateway should be able to access ERP functionality on this SAP ERP system then role creation and assigning of roles to GSDO groups is optional but this is not recommended.
To create roles, proceed as follows:
Open transaction pfcg in the SAP Gateway system.
Enter a name for the role in the Role field.
Choose Single Role.
Save the Role.
Choose the Authorization tab.
Choose Change Authorization.
Choose the template mentioned in the Role Templates section.
Choose Generate to create a new role.
For information on changing roles, see the SAP NetWeaver documentation about Changing Standard Roles.
Use the predefined role templates mentioned in the table below to create user roles for SAP ERP scenarios:
Template Name |
Template For |
|---|---|
/IWCNT/RT_USER_EMP |
Employee |
/IWCNT/RT_USER_MTL |
Material |
/IWCNT/RT_USER_BOM |
Bill of Material |
/IWCNT/RT_USER_DOC |
ERP Document |
/IWCNT/RT_USER_QUOT |
Sales Document (Inquiry and Quotation) |
/IWCNT/RT_USER_CUST |
ERP Customer |
/IWCNT/RT_USER_TIMA |
Time Management |
Authorizations
The user must have the following authorizations to access SAP Gateway system for SAP ERP scenarios:
SAP ERP Scenario |
Service |
Authorization Object |
Authorization Values |
Employee |
/IWCNT/SG_EMPLOYEE_0001 |
S_SERVICE |
SRV_NAME— 754650500996EDE0D42ED48806D730 SRV_TYPE — HT |
S_CODE |
TCD — SICF |
||
Material |
/IWCNT/SG_MATERIAL_0001 |
S_SERVICE |
SRV_NAME-DB44022B5B569F5B9219500599D4E7 SRV_TYPE-HT |
S_CODE |
TCD-SICF |
||
Bill of Material (BOM) |
/IWCNT/SG_BOM_0001 |
S_SERVICE |
SRV_NAME-F235FE5EF7ED50DAE3B3F23CC1CA0E SRV_TYPE-HT |
S_CODE |
TCD-SICF |
||
ERP Document |
/IWCNT/SG_DOCUMENT_0001 |
S_SERVICE |
SRV_NAME-C2A96D9A6E6802A945D6E8904E190A SRV_TYPE-HT |
S_CODE |
TCD-SICF |
||
Sales Document (Inquiry and Quotation) |
/IWCNT/SG_ERPSALES_0001 |
S_SERVICE |
SRV NAME —E216D44A584CA3D8B8A6313AD0A6B0 SRV_TYPE-HT |
S_CODE |
TCD-SICF |
||
ERP Customer |
/IWCNT/SG_CUSTOMER_0001 |
S_SERVICE |
SRV NAME--0C3ED4D55DD9C87D1290E95581DA8D SRV_TYPE-HT |
S_CODE |
TCD-SICF |
||
Time Management |
/IWCNT/EMPLOYEETIMESHEET_0001 |
S_SERVICE |
SRV_NAME–15DA80503D25C5D856CB6072DC9598, 56B1795EE40F0F7302DE059E7586FA SRV_TYPE-HT |
S_CODE |
TCD-SICF |
While creating role template in the SAP ERP system, include the authorizations provided in the table below. The user must have these authorizations to access SAP ERP system for SAP ERP scenarios:
SAP ERP Scenario |
Service |
Authorization Object |
Authorization Values |
|---|---|---|---|
Employee |
S_RFC |
|
|
Material |
S_RFC |
|
|
Bill of Material (BOM) |
S_RFC |
|
|
ERP Document |
S_RFC |
|
|
S_TCODE |
|
||
Sales Documents (Inquiry and Quotation) |
S_RFC |
|
|
ERP Customer |
S_RFC |
|
|
ESA (EhP4 and above) |
|
||
ECC_CUSTBASICDATABYIDQR_V2 |
S_SERVICE |
SRV Name — 228A5E185E0CFF7B36C96C854BD1C7 SRV Type — HS |
|
S_TCODE |
TCD=XD03 |
||
Time Management |
ECC_WORKAGSIMPLERELEMENTSQR |
S_SERVICE |
SRV Name–583824D652C5AF040CDB5E6A3938C8 SRV Type — HS |
ECC_EMPTIMFEMPTIMSHEETELEQR |
S_SERVICE |
SRV Name — C0972E83D4383710F9FD8B8FB78280 SRV Type – HS |
|
ECC_EMPTIMSHEETCHGRC |
S_SERVICE |
SRV Name —E564B11456D8E712E179A6EF4CBFC4 SRV Type — HS |
Continue with Managing RFC Destinations