C.07 - Authorization - Purchasing SOD
This workflow examines the authorizations on the specified SAP system to ensure that critical functions within the Procurement process are segregated properly. In particular, it allows you to check that no users have access to transactions in all three of the following functional areas:
-
Vendor Maintenance
-
Purchase Order Processing
-
Goods Receipt
The workflow results are stored in the Results_C07 Table dataset, which has the following columns:
Column | Description |
---|---|
USERNAME | SAP user account. |
PROFILE | A profile associated with this user account. |
AUTH | An authorization associated with the profile. |
OBJECT | The associated authorization object. |
FIELD | The authorization’s ‘Field’ value. |
VON | The authorization’s ‘From’ value. |
BIS | The authorization’s ‘To’ value. |
Category | Authorization category. |
PERSNUMBER | The user's personnel number. |
NAME_FIRST | The user's first name. |
NAME_LAST | The user's last name. |
USTYP | User type. |
UFLAG | User flag. |
Creating RFC Destinations
Before you begin, you will need to create an RFC Destination for the SAP system you wish to analyze.
Preparing the Workflow
To prepare the C.07 - Authorization - Purchasing SOD workflow template, drag its workflow from the Templates folder into your own workspace, and modify the workflow as follows:
To specify the system to analyze:
-
Select the System to Audit parameter and choose ‘Edit RFC Destination’ from its context menu to display the RFC Destination dialog.
-
Select the RFC Destination for the system to analyze, then click ‘Save’.
Save the workflow using the ‘Save’ toolbar button.
Running the Workflow
To run the C.07 - Authorization - Purchasing SOD workflow, click the ‘Run’ toolbar button, choose ‘Run Now’ from the diagram’s context menu, or press F5. The currently running workflow action is marked with an animated display. When the workflow execution has completed, select the Results_C07 dataset and choose ‘View Details’ from the context menu to display the result table.