Baltimoreloading338

• Transaction description : Central User Administration Log
• Module : BC-SEC-USR-ADM (User and Authorization Management)
• Parent Module : BC (Basis Components)
• Package : SUSR (ABAP User Administration)
• ABAP Program : SAPMUSLG

1. SCUM SAP tcode - Central User Administration SCUM (Central User Administration) is a standard SAP transaction code available within R/3 SAP systems depending on your version and release level. Below for your convenience is a few details about this tcode including any standard documentation available.
2. SCUM SAP tcode - Central User Administration SCUM (Central User Administration) is a standard SAP transaction code available within R/3 SAP systems depending on your version and release level. Below for your convenience is a few details about this tcode including any standard documentation available.

As we have seen the overview of CUA in our pervious blog, now, I will explain the procedure to set up the CUA. At macro level details, below steps need to be performed to set up the CUA:

OAA1 SAP ArchiveLink: Maint.user st.syst OAA3 SAP ArchiveLink protocols OAA4 SAP ArchiveLink applic.maintenance OAAD ArchiveLink Administration Documents OAC2 SAP ArchiveLink: Globaldoc. Types OAC5 SAP ArchiveLink: Bar code entry OACA SAP ArchiveLink workflow parameters OAD0 SAP ArchiveLink: Objectlinks OAD2 SAP ArchiveLink document classes. When executing t-code SCUG to import the users from the child system, some users, that exists in just one. But, if one user exists in more than one client and it appears in 'Identical users' tab of SCUG, after importing this user, when editing. In SU01, a dump occurs. How to maintain the user Company address in SAP Author Techrelam. Posted-on 21:48. Maintain Company address for User in SAP.

Steps to Set Up the CUA

1. Create Administrator
2. Specify Logical systems
3. Assign logical systems to client
4. Create system users
5. Create RFC destinations
6. Create CUA
7. Set field distributor parameters
8. Synchronization of company addresses
9. Transfer Users

Below are the systems considered as an example to set up CUA:

• System ABC with client 123
• System PQR with client 456
• System XYZ with client 789

Here, we will set system ABC (client 123) as a CUA central system and other systems as child systems. As per this structure, we will proceed with above mentioned steps:

1. Create Administrator User

SALE_CUA

In a completely new system that is to be set up, an administration user needs to be created with which all further steps can be performed. To create such administrator user:

• Login to all systems with user SAP* and create the user in t-code SU01
• Assign the relevant administrator role to user
• Apply the security measures to secure SAP* user against misuse

2. Specify Logical systems

In CUA landscape, SAP systems are identified with Logical system names. Due to this, Logical systems need to be created for every system which is going to be included in CUA landscape. This is one time task to be performed before setting up CUA. The Logical systems can be defined be following below steps:

• Login to system ABC (client 123) with administrator user created in step 1
• Go to t-code BD54 You can; alternatively maintain the table view V_TBDLS using transaction SM30.
• Choose Edit ? New Entries
• In the LogSystem column, create a new logical name in capital letters for every CUA system (that is, for the central and all child systems including those from other SAP Systems). Here, the standard naming convention for logical system is <System ID>CLNT<Client>. In this way, the below logical systems will be created in CUA central system (ABC system):
  • ABCCLNT123
  • PQRCLNT456
  • XYZCLNT789

In the same way, create the logical system name for the central system in all child systems.

3. Assign logical systems to client

We need to perform this cross-client procedure only once for each SAP system as per below procedure:

• Login with administrator user and execute the t-code SCC4
• Switch to change mode
• Call the detail display of the client that you want to assign a logical system by double clicking on the line of the client
• In the Logical System field, specify the name of the logical system to which the selected client is to be assigned

Ex: – If we execute the t-code SCC4 in system ABC then, open the client 123 and maintain the logical system name as ABCCLNT123

4.Create system users

System users are required for the internal communication of the systems in an ALE group. These system users, defined in the target systems, are entered in RFC destinations in the calling systems.

Note: – No license fees apply to these system users.

To simplify the maintenance of system users, use the following naming conventions:

• In the central system (system ABC), the naming convention will be CUA_<system Id>. This system user is used in the RFC destinations from child to central system. With this naming convention, we need to create the system user in system ABC with name: CUA_ABC
• In the child systems, the naming convention CUA__<System Id>_<Client>. These system users are used in the RFC destinations from central to child system. With this naming convention, we need to create the system users as below:

Sap Tcode Table

Below are SAP delivered roles for system users which need to be copied to customer namespace before assigning them to system users.

Scug Tcode In Sap Data Management

Roles in Central system:

• SAP_BC_USR_CUA_SETUP_CENTRAL
• SAP_BC_USR_CUA_CENTRAL
• SAP_BC_USR_CUA_CENTRAL_BDIST

Roles in child system:

• SAP_BC_USR_CUA_SETUP_CLIENT
• SAP_BC_USR_CUA_CLIENT

With these details, we need to create the respective users with their applicable authorizations in t-code SU01 as below:

5. Create RFC destinations

Till this step, we are ready with Logical systems and system users, Now, we need to create RFC connections between the systems as mentioned in below steps:

• Login to central system ABC, execute the t-code SM59 and Choose Create.
• Enter the following data:

Note: – You must create the name of the RFC destination in capital letters.

• Confirm your entries with ENTER
• Choose the option Host Name for Save as and Confirm your entries with ENTER
• Specify the name of the SAP system of the child system (such as PQR) in the target system ID field. To do this, overwrite the automatic entry.
• Specify the message server of the target system in the MessageServer field. To do this, overwrite the automatic entry.
• Save your entries.
• To define the return connection, repeat the procedure in the child system for the central system
• To determine whether the network connection between the two systems is functioning correctly, choose Test Connection.

In this way, we have created the RFC connections (with names identical to Logical system name of target system) in each SAP systems.

6. Create CUA

Till now, we have connected all the systems ABC, PQR and XYZ as in below figure:

Now, we will define the system ABC as CUA in this landscape as detailed in below steps:

• Login to system ABC and execute the t-code SCUA
• Enter the name of your distribution model, such as CUA.
• Choose Create.
• Enter the name of the child systems viz. PQRCLNT456 and XYZCLNT789
• Save your entries.

In this way, we have defined the system ABC as central system. After completion of this step, you can no longer create user master records in the child systems.

7. Set field distributor parameters

In Central User Administration, we can use the distribution parameters in transaction SCUM to determine where individual parts of a user master record are maintained.

• In the central system
• Locally in the child system
• In the child system with automatic redistribution to the central system and the other CUA child system

Every input field of the user maintenance transaction SU01 has a field attribute that you set once in the central system with transaction SCUM during Customizing. To perform this customizing, perform the below steps:

• Login to system ABC and execute the t-code SCUM

The system displays the User Distribution Field Selection screen, with tab pages of the fields whose distribution parameters you can set. You can select the following options on the tab pages:

• To maintain the other parameters, too, switch to the other tab pages. The tab pages correspond to those of user maintenance.
• Save your entries. The distribution parameters are automatically transferred to the child systems.

8. Synchronization of company addresses

The company addresses are maintained in individual systems PQR and XYZ. To enable CUA to communicate properly you must ensure that at least the central system contains complete information about all valid company addresses. You then distribute this complete company address set to all child systems, meaning that there is a consistent status of company addresses in the entire CUA.

Steps:

• Login to central system ABC and execute the t-code SCUG
• Select the first child system PQR and choose Synchronize Company Addresses in the Central System
• Process all sub lists for the address categories in succession and repeat the above steps for system XYZ
• Choose Back to start the address distribution from the central system.
• Choose Distribute Synchronized Company Addresses to target Systems icon.

9. Transfer Users

As soon as we have configured the CUA, the users from child systems need to be transferred to Central system so that we can see their authorization details (such as roles to be assigned to users for child system and the roles assigned to them). The procedure is given in below steps:

• Login to central system ABC and execute the t-code SCUG
• Place the cursor on central system name appeared on the screen and click on the Transfer Users.
• The system displays the following tab pages:

• Select all new and changed users and choose Transfer Users.
• Perform the above 2 steps for child systems PQR and XYZ
• After you have completed the user transfer, remove the roles Z_SAP_BC_CUA_SETUP_CENTRAL and Z_SAP_BC_USR_CUA_SETUP_CLIENT from the system users.

At this stage, the CUA set up is completed.