Communication users shall have the same authorization objects as application users.
In order for the communications equipment to communicate with the system, a user with certain permissions must be provided from SAP:
Rol → SAP_XI_APPL_SERV_USER
Role Z created for th application user
Role Z created by us which has the authorization object S_SERVICE with the permissions of the three Service Definitions.
Authorization object S_SERVICE:
Serv. Type: WS
External Service: /EINVO/RO_SD_SEND_RESPONSE//EINVO/RO_SD_SEND_RESPONSE (Service Definition Name + / + Service Definition Function Module)
To check that the second Role is created correctly, run the following Function Module : AUTH_TRACE_WRITE_USOBHASH
Example:
Execute and check the value of the HASH_VALUE field matches the value of the NAME field of the S_SERVICE authorization object:
