Restricting access to material types and material groups in SAP S4 HANA
In S4 HANA Procurement, material types and material groups are restricted using authorization objects M_MATE_MAR (Material Master: Material Types) and M_MATE_WGR (Material Master: Material Groups). Both these objects have a common field value called BEGRU (Authorization group).
Material types and material groups cannot be directly maintained in BEGRU. First, use the Tcode SE54 to create authorization groups. The authorization groups must then be mapped to material types and groups using the T-codes OMS2 and OMSF. Then these authorization groups should be maintained in a role.
Note: Material types with no authorization group will skip the M_MATE_MAR authority check. material groups with no authorization group will skip M_MATE_WGR. Hence, authorization groups should be maintained against all the material types (allowed and restricted) and material groups (allowed and restricted) to make the access restrictions work.
Authorization object
Description
Field1
Description
Field2
Description
M_MATE_MAR
(Material Master: Material Types)
Actvt
Activity
BEGRU
Authorization group
M_MATE_WGR
(Material Master: Material Groups)
Actvt
Activity
BEGRU
Authorization group
Let us look at an example of restricting users’ access to specific material types and groups while using the T-codes MM01, MM02, and MM03.
Material types allowed for users – Goods. All the other material types other than Goods should be restricted for users.
Material groups allowed for users – Finance Services. All the other material groups other than Finance Services should be restricted for users.
Two sets of authorization groups should be created in SE54 for the case described above.
Z001 for allowed material types.
Z002 for restricted material types.
Z003 for allowed material groups.
Z004 for restricted material groups.
Steps:
Create authorization groups for material types and material groups using the Tcode SE54.
Map authorization groups with the material types using the Tcode OMS2 (maintain the authorization group Z001 against the allowed material types (Goods) and maintain the authorization group Z002 against all the restricted material types.)
Map authorization groups with the material groups using the T-code OMSF (maintain the authorization group Z003 against all the allowed material groups (Finance Services) and maintain the authorization group Z004 against all the restricted material groups.)
Maintain the authorization groups in the authorization objects (M_MATE_MAR and M_MATE_WGR) in PFCG.
Restricting access to material types and material groups in SAP S4 HANA In S4 HANA Procurement, material types and material groups are restricted using authorization objects M_MATE_MAR (Material Master: Material Types) and M_MATE_WGR (Material Master: Material Groups). Both these objects have a common field value called BEGRU (Authorization group).Material types and material groups cannot be directly maintained in BEGRU. First, use the Tcode SE54 to create authorization groups. The authorization groups must then be mapped to material types and groups using the T-codes OMS2 and OMSF. Then these authorization groups should be maintained in a role.Note: Material types with no authorization group will skip the M_MATE_MAR authority check. material groups with no authorization group will skip M_MATE_WGR. Hence, authorization groups should be maintained against all the material types (allowed and restricted) and material groups (allowed and restricted) to make the access restrictions work. Authorization objectDescriptionField1DescriptionField2DescriptionM_MATE_MAR(Material Master: Material Types)ActvtActivityBEGRUAuthorization groupM_MATE_WGR(Material Master: Material Groups)ActvtActivityBEGRUAuthorization groupLet us look at an example of restricting users’ access to specific material types and groups while using the T-codes MM01, MM02, and MM03.Material types allowed for users – Goods. All the other material types other than Goods should be restricted for users.Material groups allowed for users – Finance Services. All the other material groups other than Finance Services should be restricted for users.Two sets of authorization groups should be created in SE54 for the case described above.Z001 for allowed material types.Z002 for restricted material types.Z003 for allowed material groups.Z004 for restricted material groups.Steps:Create authorization groups for material types and material groups using the Tcode SE54.Map authorization groups with the material types using the Tcode OMS2 (maintain the authorization group Z001 against the allowed material types (Goods) and maintain the authorization group Z002 against all the restricted material types.)Map authorization groups with the material groups using the T-code OMSF (maintain the authorization group Z003 against all the allowed material groups (Finance Services) and maintain the authorization group Z004 against all the restricted material groups.)Maintain the authorization groups in the authorization objects (M_MATE_MAR and M_MATE_WGR) in PFCG. Read More Technology Blogs by SAP articles
#SAP
#SAPTechnologyblog