Profile Generator 1.NEVER modify S_TCODE unless the Role is built manually. 2.Modify Standard delivered authorization: a.Only modify when there’s a request to REMOVE authorization and IF AND ONLY IF no other transaction is linked to that value. Otherwise, by removing the transaction, it will remove the value. Summary of Rules and Restrictions
Profile Generator 2.Modify Standard delivered authorization (CONT’D): b.Always make a copy of the authorization and make changes. c.Inactive the original authorization. d.Modify the copied authorization and the status become Changed. e.Double-click on description of the authorization to document the reason. The same applies to manually inserted authorization. Summary of Rules and Restrictions
Profile Generator 3.If a Changed authorization exists without an Inactived Standard authorization, delete the Changed authorization. 4.Bogus SU53 check most of the time: a.S_ADMI_FCD (SM02). b.S_CTS_ADMI. c.S_LAYO_ALV (023). Summary of Rules and Restriction
Profile Generator Question?
Profile Generator Contact Information Thomas Tsan SAP Security Architect TK Consultants, Inc. Phone: (281)
Thank you for attending! Please remember to complete and return your evaluation form following this session. Session Code: