You can manage authorizations by user role for business transactions in the Plant Maintenance (PM) module. See how to use authorization field BETRVORG to simplify your PM authorization customization.
Companies manage authorizations for working with Plant Maintenance (PM) internal orders, equipment, functional locations, and notifications within a user’s role. The role provides the rights necessary for accessing and manipulating company data. You use authorization field BETRVORG to ensure that the PM expert or PM manager can only access data in his or her area of responsibility. Elements requiring protection include personnel master data, transactions, tables, user master records, access authorization profiles, and access authorization objects. It is also possible to subject the assignment of authorizations to an authorization check.
The Plant Maintenance (PM) security module has specific
authorization objects that are related to business
transactions. I’ll describe these authorization
objects and the business transactions behind them,
and then give you tips and best practices from my
own experience. I’ll include information such
as menu paths and corresponding business transaction
codes that are not readily available. Then I’ll
provide three examples to illustrate how to customize
the user role to provide authorizations for specific
PM business actions. Assigning authorizations to
roles provides the ability to reevaluate each user’s
role and adapt their access accordingly as business
The PM authorization objects I’ll cover are:
• I_VORG_ORD: business
operation for orders
• I_BETRVORG: business
• I_VORG_MEL: business
operation for notifications
First I’ll give you some background information.