SAP Solution Manager 7.2 · Managing Security

How do the four functional types of SAP single roles differ?

  • Infrastructure — base authorizations to read SolMan's data sources (LMDB/business partner); the foundation for any function, e.g. SAP_SM_SL_DISPLAY.
  • Core business — job-function/tool-specific access, e.g. SAP_SUPPDESK_PROCESS for Incident Management.
  • Navigation — access to UIs (SAP_SM_FIORI*/SAP_SMWORK* for Fiori, SAP_SM_CRM_UIU* for ITSM/Change UI).
  • SAP BW authorizationSAP_SM_BI* for SAP BW report objects in SolMan.

This is one card from the KnowCard library. The full way to learn it — spaced-repetition review, progress tracking, and AI explanations — lives in the KnowCard app. We’re in private beta now; iOS & Android are coming soon.

Join the private beta

Already a tester? Sign in →

More in Managing Security

How are SolMan roles structured, and why does copying SAP roles into your namespace add upgrade work?
How is the SAP Web Dispatcher configured for SolMan, and how does one support multiple backends?
How do you securely expose Fiori apps externally, and why never connect directly to SolMan?
What does the User administration tool do, and what are its three tabs?
What's a common SolMan security pain point, and who should own SolMan authorizations after configuration?
What are the two options for creating SolMan roles, and which has the least maintenance?