SAP ABAP Data Element AGR_OBSOLETE (Role Obsolete)
Hierarchy
☛
SAP_BASIS (Software Component) SAP Basis Component
⤷
BC-SEC-AUT-PFC (Application Component) ABAP Authorization and Role Management
⤷
S_PROFGEN (Package) ABAP Role Administration (Profile Generator)
SAP_BASIS (Software Component) SAP Basis Component⤷
BC-SEC-AUT-PFC (Application Component) ABAP Authorization and Role Management⤷
S_PROFGEN (Package) ABAP Role Administration (Profile Generator)
Basic Data
| Data Element | AGR_OBSOLETE |
| Short Description | Role Obsolete |
Data Type
| Category of Dictionary Type | D | Domain |
| Type of Object Referenced | No Information | |
| Domain / Name of Reference Type | CHAR1_X | |
| Data Type | CHAR | Character String |
| Length | 1 | |
| Decimal Places | 0 | |
| Output Length | 1 | |
| Value Table |
Further Characteristics
| Search Help: Name | ||
| Search Help: Parameters | ||
| Parameter ID | ||
| Default Component name | ||
| Change document | ||
| No Input History | ||
| Basic direction is set to LTR | ||
| No BIDI Filtering |
Field Label
| Length | Field Label | |
| Short | 10 | Obsolete |
| Medium | 15 | Role Obsolete |
| Long | 20 | Role Obsolete |
| Heading | 30 | Role Obsolete |
Documentation
Definition
The person respoonsible for this role has identified this role as obsolete. Check whether the description of the role contains additional information, for example, which replacement roles you can use.
Description
Possible reasons for roles becoming obsolete:
- The role is inconsistent with the principle of functional separation, which restricts the area of responsibility for individual users to increase system security. The obsolete role therefore contains authorizations that do not permit functional separation. Assign different technical functions to different roles.
- Example: An employee in accounting wants to enrich himself. To do this, he creates bank details and a vendor. He can then transfer small sums to himself inconspicuously. To avoid this, a user who can create bank details should never have authorization to create vendors. The functional separation could look roughly like this: One user has authorization to create vendors. A second user has authorization to create bank details.
- The applications contained in the role are obsolete.
This message is for your information only. Although we recommend that you no longer use this role, it is technically still possible to do so.
Use
Dependencies
Example
History
| Last changed by/on | SAP | 20110908 |
| SAP Release Created in | 730 |
