SAP权限管理技术架构介绍

权限对象 authorization object–操作某个业务元素所需要的权限(s_tcode,)
权限字段 authorization–权限管理的最小单元（作业）
允许的操作  activity–
允许的值    field value–

Use
In Work Clearance Management, various authorization objects  and authorization profiles are required.

For more information on the SAP authorization concept, see Users and Roles (BC-SEC-USR).

Features
The following table shows you the authorization objects and authorization profiles that are used in Work Clearance Management.

Authorization Objects

Authorization Object      Description              Authorization Field(see also Legend)      Use
S_TCODE                   Transaction code            (TCODE)                                     All transactions
I_BEGRP                  Authorization group          (TCODE, BEGRP)                          All WCM objects
I_INGRP                   Planner group                 (TCODE, IWERK, INGRP)               All WCM objects
I_IWERK                 Planning plant                  (TCODE, IWERK)                        All WCM objects
I_SOGEN                Approvals                           (SWERK, PMSOG)                    All WCM objects
I_CONFLICT
Checks/Simulations
(IWERK, WC_CONFTYP)
Operational WCDs
I_WCUSE
Uses
(IWERK, OBJART, OBJTYP, WCUSE, AKTTYP)
All WCM objects
I_FCODE
Function codes
(IWERK, OBJART, OBJTYP, WC_FCODE)
All WCM objects
I_VAL
Valuation
(IWERK, VAL)
Order
Legend for the Authorization Fields

Authorization Field
Description
AKTTYP
Activity type (Create, change, display)
BEGRP
Authorization group
INGRP
Planner group
IWERK
Planning plant
OBJART
Object type (Work approval, Application, Work clearance document)
OBJTY
Object category (Work clearance application, additional application, WCD template, Operational WCD)
PMSOG
Approval
TCODE
Transaction code
VAL
Valuation
WC_CONFTYP
Conflict category
WC_FCODE
Function code
WCUSE
Use of WCM objects
Authorization Profiles

Authorization Profile
Description
I_WCM_ALL
All authorizations for Work Clearance Management
I_CONF_ALL
All authorizations for checks and simulations
I_FCODE_ALL
All authorizations for function codes
I_WCUSE_ALL
All authorizations for uses
I_VAL_ALL
All authorizations for the valuation
I_PM_ALL
All authorizations for Plant Maintenance (PM)
See also:

Electronic Signature

企业上SAP软件为何选择赛锐信息作为实施商?

1、致力于SAP ERP系统应用的服务商；

2、已为国内200多家SAP系统客户的ERP信息化建设提供了咨询及实施服务；

3、拥有完善的产品策划、研发、实验、测试、质量控制过程；

4、公司自主研发的AMS系列软件产品是国内首个用于SAP权限风险识别的增强系统；

5、为用户管理、风险规避和信息审计提供辅助工具；

6、帮助用户规范企业的管理行为，建立合规的管控流程，有效提高企业IT资产投资回报率；

7、技术指标上拥有完全的、独立的领先优势，可以满足市场竞争、技术许可和标准制定等方面的需要；