Master Data Governance for Customer (CA-MDG-APP-CUS)

Authorization Objects

Master Data Governance for Customer does not have dedicated authorization objects, but instead uses the authorization objects of the business objects Business Partner and Customer, the authorization objects of the Application Framework for Master Data Governance, and the authorization objects of the Data Replication Framework.

Note Note

Depending on whether you use the Master Data Governance for Customer on a hub system or on a client system a different set of authorization objects is required.

End of the note.

Authorization Object	Description	Hub System	Client System
B_BUPA_GRP Note This authorization object is optional. You need to assign this authorization object only if master data records are to be specifically protected. End of the note.	Business Partner: Authorization Groups	x	x
B_BUPA_RLT	Business Partner: BP Roles	x	x
B_BUPR_BZT	Business Partner Relationships: Relationship Categories	x	x
DC_OBJECT	Data Cleansing	x
F_KNA1_APP	Customer: Application Authorization	x	x
F_KNA1_BED Note This authorization object is optional. You do not need to assign this authorization object if no master records are to be specifically protected. End of the note.	Customer: Account Authorization	x	x
F_KNA1_BUK	Customer: Authorization for Company Codes	x	x
F_KNA1_GEN	Customer: Central Data	x	x
F_KNA1_GRP	Customer: Account Group Authorization	x	x
MDGC_LCOPY	Copy Customer Master Data from MDG Hub	—	x
V_KNA1_BRG	Customer: Account Authorization for Sales Areas	x	x
V_KNA1_VKO	Customer: Authorization for Sales Organizations	x	x
BCV_PERS	Personalize BCV UI for Query View	x	x
BCV_QRYVW	Query View	x	x
BCV_QUERY	Query	x	x
BCV_QUILST	Overview	x	x
BCV_QVWSNA	Query View Snapshot	x	x
S_START	Start Authorization Check for TADIR Objects	x	x
S_PB_CHIP	ABAP Page Builder: CHIP	x	x
S_PB_PAGE	ABAP Page Builder: Page Configuration	x	x

Caution Caution

Authorization objects used by all components of Master Data Governance are listed in the document Authorization Objects and Roles Used by SAP MDG, Central Governance.

End of the caution.

Standard Roles

Role	Name
SAP_MDGC_MENU_04	Master Data Governance for Customer: Menu
SAP_MDGC_DISP_04	Master Data Governance for Customer: Display
SAP_MDGC_REQ_04	Master Data Governance for Customer: Requester
SAP_MDGC_SPEC_04	Master Data Governance for Customer: Specialist
SAP_MDGC_STEW_04	Master Data Governance for Customer: Data Steward
SAP_MDGC_CL_MENU_04	Master Data Governance for Customer (ERP Customer UI): Menu
SAP_MDGC_LCC_MENU_04	Master Data Governance for Customer (Lean Request UI): Menu
SAP_MDGC_LCC_REQ_04	Master Data Governance for Customer (Lean Request UI): Requester

If you want to restrict the authorizations for users or roles to specific values, go to Create Authorizations for Data Model and define which entity types and attributes are authorization relevant.

More Information

If you use the optional feature address screening, see the corresponding security guide under http://help.sap.com/fra.

For details on the address screening, see Address Screening.