Issuu is a digital publishing platform that makes it simple to publish magazines, catalogs, newspapers, books, and more online. Easily share your publications and get. Find an introduction to SAP Extended Warehouse Management EWM. Learn the how SAP EWM application has evolved to fit the needs of SAP customers. As a part of Project Training it is important for SAP consultants to know about Interfaces and IDOCs. This session is applicable to all module consultants. Process flow of the Authorization Check in Business Transactions. In this article I will show you where you can find more information about the authorization check that takes place in business transactions in SAP CRM. F4PrOrKZKY/hqdefault.jpg' alt='Sap Activate Enhancement Point' title='Sap Activate Enhancement Point' />At the same time I will try to elaborate all checks in a specific blog post in the next coming weeks, so youll learn all relevant customizing checkssteps that are relevant to setup such a concept. Ill also explain in details the authorization objects that are relevant for each particular check using 1 or more examples. Finding the relevant information about SAP CRM Authorization check in Business Transactions. Information about the authorization check can be found in HELP. SAP. COMBut, as this check is dependant on the release you are working in, I will guide you through the steps in order to find the relevant info relevant for your specific release. Step 1 Launch Help. Choose the link SAP Business Suite as this is where SAP CRM is categorized under. Step 2  Choose Customer Relationship Management. Step 3 Choose you relevant Release  in this example I am choosing CRM 7. Step 4 click on Application Help. Step 5 Choose your language. Step 6 search for Authorization check in business transactions within the application help of your Release. You will normally see an entry as below If you open the above link you will get to the point where you will be able to read and learn the process flow that is being used in SAP CRM to perform an authorization check in business transactions. What you should understand is the below image which is fairly simple once you are familiar with it. For your convenience here is the direct link to the above screenshot in HELP. SAP. COM for SAP CRM Release 7. Basically, in this release  SAP does perform a check on 4 levels so to speak ,and starts with the 1st check. If at check 4 the authorization check was still negative your access is denied or at least the allowed activity e. What are these 4 authorization check levels in SAP CRM 7. Access to Your Own Documents CRMORDOPWhat does this mean The system checks whether the user in the relevant transaction takes on a specific partner function for the activity executed, for example, whether he or she is the employee responsible. Furthermore, the system checks whether the user has the authorization to change, display, or delete a transaction. If the result of this check is positive, no further checks take place at transaction level. This check is purely based on the authorization object CRMORDOP. No other authorization object is being checked during this check level. Visibility in the organizational model authorization object CRMORDLPIf the user is not authorized in the first step of the check, the second check is carried out. This check makes it possible to control the access to transactions, depending on the employees assignment to certain organizational units via his or her position. This authorization object defines which transactions can be processed by the user in the individual organizational levels, and which activities he or she can carry out here. If the user is authorized for the chosen activity create, change, display, delete and the relevant organizational level, no further checks are carried out. Once again, during this check only the authorization object CRMORDLP is being checked. Xbox 360 Voice Changer Game there. Territory check in claims management authorization object CRMORDTEIf the business transaction for which the system performs the authorization check belongs to a business transaction type for which the territory check has been activated, the system determines the territory of the business transaction in question. For more information about the territory of a business transaction, see Territory Determination in the Business Transaction. You activate the territory check in SAP CRM Customizing for Customer Relationship Management under   Transactions Basic Settings Define Transaction Types. The system then determines in which territories the user for whom the authorization check is being performed is authorized to perform the selected activity, by the CRMORDTE authorization object authorization object CRM Order Visibility in Territory. CRMORDTE can authorize a user in his or her own territories only, or both in his or her own territories and in any territories below this. If this includes the territory of the business transaction, the user is authorized for this business transaction, and the authorization check ends here. However, if the users CRMORDTE entries do not include the territory of the business transaction, or if CRMORDTE does not grant the user any authorization for the selected activity, the system moves on to the next step in the authorization check. Combination of several authorization objects. If the preceding checks were not successful, this combination of different authorization objects is checked. All the checks must be successful before the user is authorized to process the required transaction. This means that the user receives the authorization to process only if he or she is authorized to Process the leading business transaction category in the corresponding transaction type. Process the correspondingtransaction type. Process in the corresponding sales area. Authorization objects CRMACT, CRMOPP, CRMSAO, CRMSEO, CRMCOSE, CRMCONSE, CRMLEAD, CRMCMP, CRMCOSA, CRMCOSC, CRMFMFND, CRMFMFNP, CRMFMBPOUsing these authorization objects, the system checks which business transactions the user is allowed to process, and whether he or she is allowed to carry out the functions create, display, or delete in these transactions. The system checks the relevant authorization object, depending on the activity executed. Activities CRMACTOpportunities CRMOPPSales transactions CRMSAOService transactions CRMSEOService contract CRMCOSEService confirmation CRMCONSELead CRMLEADComplaints CRMCMPFinancing contract CRMCOSASales contract CRMCOSCFund CRMFMFNDFunds plan CRMFMFNPBudget posting CRMFMBPOAuthorization object CRMORDPR Using this authorization object, the system defines which action the user is allowed to execute for each business transaction type. Authorization object CRMORDOE Using this authorization object, the system defines in which sales area or in which service organization the user is allowed to process CRM business transactions, and which activities he or she can carry out there. If the user is not authorized in this step of the check, he or she is not able to process the transaction in the required way. The user receives a system message that contains the corresponding authorization object, and refers to the lacking authorization. As said, in the next weeks  I will try to elaborate if possible for each check a concrete example in separate blog posts, and point you to the customizing steps where you will find back relevant information to understand what information you need to setup a working concept.