Authorizations in SAP Software: Design and Configuration: SAP Authorization System Design and Configuration (Hardcover)

1... Introduction ... 23 PART I Business Concepts 2... Introduction and Concept Definition ... 29 ... 2.1 ... Methodical Considerations ... 30 ... 2.2 ... Compliance ... 33 ... 2.3 ... Risk ... 34 ... 2.4 ... Corporate Governance ... 38 ... 2.5 ... Technical Versus Business Significance of the Authorization Concept ... 40 ... 2.6 ... Technical Versus Business Roles ... 42 3 ... Organization and Authorizations ... 45 ... 3.1 ... Example of an Organizational Differentiation ... 46 ... 3.2 ... Introduction ... 48 ... 3.3 ... Institutional Organization Concept ... 50 ... 3.4 ... Instrumental Organization Concept ... 54 ... 3.5 ... Consequences of the Examination of the Organization ... 72 ... 3.6 ... Views of the Organizational Structure in SAP Systems ... 73 ... 3.7 ... Organizational Levels and Structures in SAP ERP ... 83 ... 3.8 ... Information on the Methodology in the Project ... 91 ... 3.9 ... Summary ... 93 4 ... Legal Framework - Standardization Framework ... 95 ... 4.1 ... Basic Principles of Internal and External Regulations ... 96 ... 4.2 ... Internal Control System ... 100 ... 4.3 ... Sources of Law for External Accounting ... 101 ... 4.4 ... Data Privacy Laws ... 107 ... 4.5 ... General Requirements for Authorization Concepts ... 115 ... 4.6 ... Summary ... 121 5 ... Authorizations in the Process View ... 123 ... 5.1 ... Process Overview ... 123 ... 5.2 ... The Sales Process ... 125 ... 5.3 ... The Procurement Process ... 131 ... 5.4 ... Support Processes ... 136 ... 5.5 ... Requirements of the Separation of Duties ... 139 ... 5.6 ... Summary ... 140 PART II Tools and Authorization Maintenance in the SAP System 6 ... Basic Technical Principles of Authorization Maintenance ... 145 ... 6.1 ... User/Authorization ........................................................ 145 ... 6.2 ... Transaction - Program - Authorization Object ... 153 ... 6.3 ... Role and Role Profiles ... 163 ... 6.4 ... Analysis of Authorization Checks ... 193 ... 6.5 ... Additional Role Types in SAP ERP .................................. 199 ... 6.6 ... Summary ... 202 7 ... System Settings and Customizing ... 203 ... 7.1 ... Maintaining and Using the Defaults for the Profile Generator ... 204 ... 7.2 ... Upgrading Authorizations ... 218 ... 7.3 ... Parameters for Password Rules ... 223 ... 7.4 ... Customizing Settings for the Menu Concept ... 226 ... 7.5 ... Authorization Groups ... 233 ... 7.6 ... Parameter and Query Transactions ... 246 ... 7.7 ... Promoting an Authorization Field to an Organizational Level ... 254 ... 7.8 ... Developer and Authorization Trace ... 262 ... 7.9 ... Creating Authorization Fields and Objects ... 265 ... 7.10 ... Further Transactions of the Authorization Administration ... 269 ... 7.11 ... Transferring Roles Between Systems or Clients ... 271 ... 7.12 ... User Master Comparison ... 274 8 ... Role Assignment via Organizational Management ... 277 ... 8.1 ... Basic Concept of SAP ERP HCM Organizational Management ... 278 ... 8.2 ... Technical Prerequisites ... 281 ... 8.3 ... Technical Implementation ... 281 ... 8.4 ... Conceptual Special Feature ... 285 ... 8.5 ... Summary ... 286 9 ... Automated Organizational Differentiation: The Role Generator ... 289 ... 9.1 ... Challenge and Solution Approach ... 290 ... 9.2 ... Implementation Example for the Area Role Concept ... 298 ... 9.3 ... Integration, Restrictions, and Prospects ... 307 ... 9.4 ... Summary ... 307 10 ... Central Administration of Users and Management of Authorizations ... 309 ... 10.1 ... Basic Principles ... 310 ... 10.2 ... Central User Administration ... 316 ... 10.3 ... SAP BusinessObjects Access Control Compliant User Provisioning ... 325 ... 10.4 ... SAP NetWeaver Identity Management ... 331 ... 10.5 ... Summary ... 345 ... 11 ... Authorizat