Follow up Security Tasks
Albeit not required for initial installation and configuration, in almost all scenarios viewing of attachment from SAP will be required. For this to occur, standard SAP authorization will be checked and therefore will need to be added to the user profiles at some point in the future. This is a heads up (as we know SAP Security does not like surprises ☺ ) that depending on what is implemented for document types (and you may already be utilizing ArchiveLink currently), the access to object S_WFAR_OBJ will need to be granted. Below is an overview of the elements involved:
Setting | Description | Sample Value(s) |
|---|---|---|
OAARCHIV | Content Repository | * Z1 |
| You can use the wildcard (*) configuration entry here or you can restrict permissions to a particular ArchiveLink repository or set of ArchiveLink repositories. | ZA |
OADOKUMENT | Document Type You can use the wildcard (*) configuration entry here or you can restrict permissions to a particular business object or set of business objects. | * ZAPINV01 |
OAOBJEKTE
| Object Type You can use the wildcard (*) configuration entry here or you can restrict permissions to a particular ArchiveLink document type or set of ArchiveLink document types. | * BKPF BUS2014 |
ACTVT | Activity 01 for creating attachments 03 for displaying attachments 06 for deleting attachment links | * 01,03,06 Typically, 01 & 03 is granted only |