C.07 - Authorization - Purchasing SOD

This workflow examines the authorizations on the specified SAP system to ensure that critical functions within the Procurement process are segregated properly. In particular, it allows you to check that no users have access to transactions in all three of the following functional areas:

Vendor Maintenance
Purchase Order Processing
Goods Receipt

The workflow results are stored in the Results_C07 Table dataset, which has the following columns:

Column	Description
USERNAME	SAP user account.
PROFILE	A profile associated with this user account.
AUTH	An authorization associated with the profile.
OBJECT	The associated authorization object.
FIELD	The authorization’s ‘Field’ value.
VON	The authorization’s ‘From’ value.
BIS	The authorization’s ‘To’ value.
Category	Authorization category.
PERSNUMBER	The user's personnel number.
NAME_FIRST	The user's first name.
NAME_LAST	The user's last name.
USTYP	User type.
UFLAG	User flag.

Creating RFC Destinations

Before you begin, you will need to create an RFC Destination for the SAP system you wish to analyze.

Preparing the Workflow

To prepare the C.07 - Authorization - Purchasing SOD workflow template, drag its workflow from the Templates folder into your own workspace, and modify the workflow as follows:

To specify the system to analyze:

Select the System to Audit parameter and choose ‘Edit RFC Destination’ from its context menu to display the RFC Destination dialog.
Select the RFC Destination for the system to analyze, then click ‘Save’.

Save the workflow using the ‘Save’ toolbar button.

Running the Workflow

To run the C.07 - Authorization - Purchasing SOD workflow, click the ‘Run’ toolbar button, choose ‘Run Now’ from the diagram’s context menu, or press F5. The currently running workflow action is marked with an animated display. When the workflow execution has completed, select the Results_C07 dataset and choose ‘View Details’ from the context menu to display the result table.