Scribd
Upload
0 views

Creating & maintaining Users in SAP

The document provides a comprehensive guide on using SAP transaction SU01 for user maintenance, detailing the process of creating and managing user accounts within the SAP system. It emphasizes the importance of roles, profiles, and authorizations in ensuring security and proper access control. The guide includes step-by-step instructions for creating users, assigning roles, and managing user data effectively.

Uploaded by

selectsatya
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
0 views

Creating & maintaining Users in SAP

The document provides a comprehensive guide on using SAP transaction SU01 for user maintenance, detailing the process of creating and managing user accounts within the SAP system. It emphasizes the importance of roles, profiles, and authorizations in ensuring security and proper access control. The guide includes step-by-step instructions for creating users, assigning roles, and managing user data effectively.

Uploaded by

selectsatya
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 17

https://www.youtube.

com/@S4HCLUBFORYOU

SU01
Creating and Maintaining Users In SAP

Mickael QUESNOT

Mickael QUESNOT 1
Confession of a SAP Beginner:
Cracking the Code (Literally!)
with SU01!
Hey network!
I used to think SAP was this complex, unapproachable beast. But guess what?
I'm starting to crack the code, and it's surprisingly exciting!
My latest adventure? Diving into SAP transaction SU01 - User Maintenance.
Sounds basic? Think again! This isn't just about creating users. It's your first
step into understanding the security backbone of one of the world's
most powerful business systems.
Learning SU01 is like getting a backstage pass to see how access is controlled,
how roles define what you can (and can't!) do, and how the system
keeps everything in check.
Why am I buzzing about this? Because mastering these fundamentals feels
like unlocking a secret level in my professional growth! It's a core skill
that opens doors in the SAP ecosystem.
Huge shoutout to resources like the functional guide by Mickael QUESNOT
on SU01 which helped demystify this for me! Are you also on a SAP
learning journey? Or maybe you're a seasoned SAP pro with a favorite
beginner tip?
Share your thoughts below! Let's build a thread of SAP wisdom for
newcomers!
• #SAP #SAPBeginners #SU01 #SAPTraining #CareerDevelopment
#TechSkills #LearningAndDevelopment #SAPCommunity
#ChallengeAccepted #FutureOfTech

Mickael QUESNOT 2
Overview
SU01 Purpose
•Used for creation of a user master, enabling log on and a level of
interaction in SAP.

•SU01 would be used in an administrative or support role. Tasks could


be:

Set up of new users for production or test environments;


Maintenance of user master information dependant upon internal
employee movements within a business.

Roles, Profiles and Authorization


•In our scenario we will be creating a new dialogue user, then allocating
a role to enable the new user to fulfil their specific business activities.

•In SAP activities are protected by authorization.

•Access is dependent upon specific corresponding authorization, which


is determined by the types of activities within your role. When a role is
created a profile is also generated, it is the profile that contains the
required authorizations.

•Authorization is important as it ensures segregation of duties, therefore


an enhanced level of security.

Requirements
•In order to access SU01 a user with a broad profile is required:
SAP* or BCUSER.
Mickael QUESNOT 3
Initial User Maintenance

1/ Transaction Selection
In Navigation field, enter transaction code: su01.

Mickael QUESNOT 4
Initial User Maintenance

2/ Assign User Name


In User field, enter: user1;
Select: Create or F8.

Mickael QUESNOT 5
Address

1/ Assign Personal Information


Mandatory fields need to be specified / entered for Person:
In Title field, select a title from the drop down box;
In Last name field, enter a last name;
In First name field, enter a first name;

Additional Information – Address


Fields in the Address Tab belong to Business Address Services (BAS), which offers functions for
managing addresses in applications. Non – mandatory fields can also be maintained, to view
additional information regarding these, select the field of interest and press (F1)

2/ To proceed, select tab: Logon Data.

6
Mickael QUESNOT
Logon Data

1/ Select User Type


In User Type field, select: Dialog from the drop down box.

2/ Set Initial Password


In Initial password field, enter a password to enable the first logon.
In repeat password field, enter password again to confirm.
Note: Please take note of password created!

Mickael QUESNOT 7
Logon Data

3/ Set Validity Period


In Valid From field: enter the present date;
In Valid through field: enter a future date;

Additional Information Logon data: Summar y of user types


Type Purpose
Dialog Individual, interactive system access.
System Background processing and communication within a system (e.g. such as
RFC users for ALE / Workflow).
Communication Dialog-free communication for external RFC calls.
Service Dialog user available to a larger, anonymous group of users.
Reference General, non-person related users that allows the assignment of additional
identical authorizations, such as for Internet users created with transaction
SU01. No logon is possible.

Additional Information Logon data: Other fields


User group – If a user is allocated to a group this ensures a particular administrator
maintains the group only.

Accounting Number and Cost Centre – This provides further identification of the user to a
business area cost centre

4/ To proceed, select tab: Defaults.

8
Mickael QUESNOT
Defaults

1/ Set Defaults
Default settings for start menu, language, decimal, date, time formats
can be adjusted to suit user preference as well as output devices.

2/ To proceed, select tab: Parameters.

Mickael QUESNOT 9
Parameters

1/ Set Parameters
Certain fields in SAP have a Parameter ID (PID). If a field has a PID,
the field can be specified under the Parameter ID column and a default
value can be specified for this field under the Parameter Value column.
To determine if a field has a PID, select the field, press F1 and select
the technical information button, if there is a PID, this will be displayed
with field information.

2/ To proceed, select tab: Roles.

Mickael QUESNOT 10
Roles
Roles: Authorization in SAP
• Transactions, programs, and services in SAP systems are
protected from unauthorized access.

• To access business objects or execute SAP transactions, a user


requires corresponding authorizations, as business objects or
transactions are protected by authorization objects.

• Authorizations are defined depending on the activity and


responsibilities of the employee. The authorizations are combined
in an authorization profile that is associated with a role. The user
administrators then assign the corresponding roles using the user
master record, so that the user can use the appropriate
transactions for his or her tasks.
Roles: Roles & Profiles
• Roles are collections of activities undertaken to fulfil an assignment
within a business scenario.
• These activities could be transactions or reports. To ensure
security, activities required to perform a role should be carefully
defined when roles are created in SAP, ensuring appropriate
segregation of duty i.e. access to some activities and restriction to
others.

• When a role is created, the corresponding profile, which contains


the necessary authorizations, is also created. Once a role is
assigned to a user, the corresponding activities and authorizations
are then granted.

Mickael QUESNOT 11
Roles

1/ Select Role
Under Role column header, select: the search box on the right.

2/ Select Role
In Single role field, enter: *

Select:

Mickael QUESNOT 12
Roles

3/ Select Role
Scroll down through the Single roles List.

Select / Tick : SAP_BC_DWB_ABAPDEVELOPER - ABAP Developer

Select:

4/ Set Validity Period


In Valid From field: enter the present date;
In Valid to field: enter a future date;
Select: Save.
Mickael QUESNOT 13
Roles

5/ Confirm Creation Of New User


After saving we should be back to User Maintenance Initial screen as
above. User1 is now saved and complete with a role. This can be
checked by logging on with ID: User1 and the Password created
previously.
To proceed, select: SAP logon pad.

5/ Roles
After saving we should be

6/ Logon As New User


In User field: Enter: user created;
In Password field, Enter: password created;
Press Enter;
Enter: New password and Repeat Password;
Select:

Mickael QUESNOT 14
Roles

Explore the user menu for your new user created!

Mickael QUESNOT 15
Additional Tasks – User Copy

1/ Choose Source User


In User field: Enter User name to be copied from;
Select Copy.

2/ Choose Details To Copy From Source User


In To field: Enter New User name to be copied to;
Select: corresponding info. check boxes you wish to copy to the new
user;
Select Copy;
Amend: Address, Logon Data as required and Save;
Your new copied user is created!

Mickael QUESNOT 16
Additional Tasks – Password Reset

1/ Choose User To Reset


In User field: Enter User name whose password is to be changed;
Select Change password.

2/ Reset Password
In New Password field: Enter new password;
In Repeat Password field: Confirm password;
Select:

Mickael QUESNOT 17

You might also like