System Copy Authorizations
The following authorizations are required by the System Copy module on source and target systems.
Mandatory Authorizations
AAAB - Cross-application Authorization Objects
S_RFC - Authorization check for RFC access
| Name | Required Authorizations |
|---|---|
| Activity | 16 (Execute) |
| Name of RFC to be protected | *, or all of BATG, FRFC, OCSB, RFC1, SALX, SCCA, SDIFRUNTIME, SDTX, SG00, SRFC, SXBP, SXMI, SYST, SVAR_RFC, SXBP_VAR, SXMB, and SYSU |
| Type of RFC object to be protected | FUGR (Function group) |
note
The list contains function module groups used for submitting and monitoring SAP jobs. Custom processes may require additional function module groups to be added to the list.
BC_A - Basis: Administration
S_ADMI_FCD - System Authorizations
| Name | Required Authorizations |
|---|---|
| System administration functions | SP01, SP0R, SPAD |
note
SPAD can be omitted if SAP jobs are to be submitted with the RFC user only. It is not recommended to omit this authorization.
S_BTCH_JOB - Background Processing: Operations on Background Jobs
| Name | Required Authorizations |
|---|---|
| Job operations | * |
| Summary of jobs for a group | * |
note
This authorization can be omitted, if SAP jobs are to be submitted as the RFC user only. It is not recommended to omit this authorization.
S_BTCH_NAM - Background Processing: Background User Name
Name|Required Authorizations
Background User Name for Authorization|* (or the names of all users used as step user in SAP jobs)
note
This authorization can be omitted, if SAP jobs are to be submitted as the RFC user only. It is not recommended to omit this authorization.
S_PROGRAM - ABAP: program run checks
| Name | Required Authorizations |
|---|---|
| Authorization group ABAP program | * (or the required authorization groups of all ABAP programs submitted in batch) |
| User action ABAP program | BTCSUBMIT |
S_SPO_ACT - Spool: Actions
| Name | Required Authorizations |
|---|---|
| Authorization field for spool | * |
| Value for authorization check | * |
S_SPO_DEV - Spool: Device authorizations
| Name | Required Authorizations |
|---|---|
| Long device names | * (or all printers that are allowed to be used) |
S_XMI_PROD - Auth. for external management interfaces (XMI)
| Name | Required Authorizations |
|---|---|
| XMI logging: company name | REDWOOD |
| Product | * |
| Interface ID | * |
note
This should be set to REDWOOD and not your company name.
Optional authorizations
BC_A - Basis: Administration
S_BTCH_ADM - Background Processing: Background Administrator
| Name | Required Authorizations |
|---|---|
| Background administrator ID | Y |
note
This authorization can be omitted, if SAP jobs are to be submitted into a one single client only and no SAP jobs with class A or B are submitted. Without this authorization only SAP jobs in the one single client are monitored.
S_RZL_ADM - CCMS: System Administration
| Name | Required Authorizations |
|---|---|
| Activity | 01 |
note
Only required, if you want to automate changing operation modes.
S_OC_DOC
| Name | Required Authorizations |
|---|---|
| Activity | 24 (or *) |
note
Only required, if you want to archive spool lists.
S_OC_ROLE
| Name | Required Authorizations |
|---|---|
| Activity | ADMINISTRATOR (or *) |
note
Only required for sending spool-lists to recipients or archiving spool lists.
S_OC_SEND - Authorization Object for Sending
| Name | Required Authorizations |
|---|---|
| Valid communication methods | * (or any communication methods you want to be able to use) |
| Range of number of recipients allowed per send operation | * (or the desired value, for example 100) |
note
Only required for sending spool lists to recipients. Can be omitted otherwise.
S_XMI_LOG - Internal access authorization for XMI log
| Name | Required Authorizations |
|---|---|
| Access method for XMI log | * |
note
Only required, if you want to access the XMI log.
See Also
sscpTopic