Protect Your SAP ERP EIC Data with New Authorization in Enhancement Package 4
- by Jarret Pazahanick, Managing Partner, EIC Experts
- Chandan Gopalani, Managing Partner, EIC Experts
- January 5, 2011
Learn the key concepts of securing employee data contained in the Employee Interaction Center and how to set up authorizations for an HR shared service center.
Given the sensitive nature of employee interactions, it is important to secure related data in the SAP HCM ERP Employee Interaction Center (EIC) against unauthorized access and misuse. SAP enhancement package 4 for the EIC application delivers a new authorization object, P_EICAU, that allows users to guard sensitive employee interaction data. This authorization object must exist in the EIC agent’s list of authorization objects to use the EIC application.
The Employee Interaction Center (EIC) is a fairly new add-on application as part of the shared services offering of SAP ERP HCM. SAP delivered several new functions as part of the enhancement package concept. Some of these enhancements include service-level agreements, customer satisfaction surveys, enhanced authorization checks, and flexible data views.
With the release of SAP enhancement package 4, EIC underwent major functionality upgrades, including the following:
The New EIC Security Concept
The new authorization object to enforce EIC activity authorization is called P_EICAU. The authorization object includes the following key attributes:
- AUTHC is the authorization level or operation to be performed on the EIC activity. The values for the authorization level are: Create (C), Modify (M), Read (R), Delete (D), and All (*).
Would you like to see this full item?