Authorization Types
Use
You can define authorization by authorization types, that is, by individual user, by user group, by role, or by organization.
User: For this authorization type, select one or more users and then assign the required authorizations to them.
User group: Select one or more user groups for this authorization type. A user group can consist of several users and/or user groups. All users in a user group are given the same authorizations. You can assign the following authorizations for user groups:
Administration
Users with administration authorization for a user group can maintain user group members and maintain authorizations for accessing the user group.
Write
Users with write authorization for a user group can maintain user group members.
Read
Users with read authorization for a user group can view user group members.
Note
To create and delete user groups, you must be assigned to the roles SAP_CFX_USRGRP_CREATOR
and SAP_CFX_USRGRP_DELETOR
respectively.
Role: For this authorization type, select one or more roles and then assign the required authorizations to them. As a result, each user to which the selected role has been assigned, has the corresponding authorizations. For information about the roles available in cFolders, see Roles in cFolders.
Organization: This authorization type corresponds to a Business Partner Integration.
Caution
When you assign authorization for an object to a business partner of type organization, the organization is exploded into the individual users and the authorization is assigned to the users of the organization individually. It is then not possible to update or revoke the authorization at organization level: You must update or revoke the authorization of each individual user manually.