SAP Knowledge Base Article - Public

3212871 - How to get "Identity and Access Management" information - SAP S/4HANA Cloud Public Edition

Symptom

How to get "Identity and Access Management" information (i.e. business roles, logon details, price category,...)

Environment

SAP S/4HANA Cloud Public Edition

Resolution

The following SAP views are released for Key User Extensibility in S/4HANA Cloud:

ViewDescription
I_IAMBusinessRoleBusiness Role
I_IAMBusinessRoleTextBusiness Role Text
I_IAMBusinessUserBusinessRole Business User - Business Role assignment
I_IAMBusinessUserLogonDetails Business User Logon Details
I_IAMBusinessUserPriceCategory Business User Price Category
I_IAMBusinessUserPriceCatTextBusiness User Price Category Text
I_IAMSupportUserRequestLog SAP Support User Request Log

The following Business Catalogs provide authorization to the views:

 

Business Role Catalog

Authorizations

Restrictions

User Management

SAP_CORE_BC_IAM_UM

Maintain Business Users

Not possible to assign business roles to the business users

Display Technical Users

None

IAM Information System

None

Role Management

SAP_CORE_BC_IAM_RM

Maintain Business Roles

Not possible to assign business roles to the business users

Business Role Templates

None

Business Catalogs

None

IAM Information System

None

Role Assignment

SAP_CORE_BC_IAM_RA

Maintain Business Users

Only possible to assign business roles to the business users. Not possible to change the user data.

Maintain Business Roles

Only possible to assign business roles to the business users. Not possible to change the business roles

IAM Information System

None

Identity and Access Management - Role Management - Display

SAP_CORE_BC_IAM_RM_DISP_PC

This business catalog enables to grant read-only access to the following Identity and Access Management apps:

• Maintain Business Roles

• IAM Information System

• IAM Key Figures

• Business Role Templates

• Business Catalogs

• Display Restriction Types

None
Identity and Access Management - User Management - Display

SAP_CORE_BC_IAM_UM_DISP_PC

This business catalog enables to grant read-only access to the following Identity and Access Management apps:

• Maintain Business Users

• IAM Information System

• IAM Key Figures

• Display Technical Users

None

See Also

Communication scenarios:

In Developer Extensibility(3-system landscape), the following classes and methods are allowed to read, create and modify business roles and business users:

Class/Method Description
CL_IAM_BUSINESS_ROLE_FACTORYFactory class for IF_IAM_BUSINESS_ROLE_FACTORY
IF_IAM_BUSINESS_ROLE_FACTORYAllowed to query and retrieve business role instances
IF_IAM_BUSINESS_ROLEAllowed to read and modify attributes of business roles
CL_IAM_BUSINESS_USER_FACTORYFactory class for IF_IAM_BUSINESS_USER_FACTORY
IF_IAM_BUSINESS_USER_FACTORYAllowed to query and retrieve business user instances
IF_IAM_BUSINESS_USERAllowed to read and modify attributes of business users

For more information, check Developer Extensibility > Development in the ABAP Environment > Reuse Components > Identity and Access Management

Keywords

IAM, Identity and Access Management, price category, logon details, business role, business user, CL_IAM_BUSINESS_ROLE_FACTORY, IF_IAM_BUSINESS_ROLE_FACTORY, IF_IAM_BUSINESS_ROLE, CL_IAM_BUSINESS_USER_FACTORY, IF_IAM_BUSINESS_USER_FACTORY, IF_IAM_BUSINESS_USER, iam class , KBA , BC-SRV-APS-IAM , Identity and Access Management , Problem

Product

SAP S/4HANA Cloud Public Edition all versions ; SAP S/4HANA Cloud all versions