Authorizations

Authorizations are set for vendors and groups. By default, the users assigned to the vendors and groups receive the corresponding authorizations. Buyer admin users get authorizations from the group, and supplier users from the vendor.

It is not possible to set authorizations for users in addition to the ones they receive from their group or vendor. However, users may also have fewer authorizations/restrictions. For details about how to set authorizations, see Set vendor-specific authorizations and Set supplier user authorizations.

Authorizations can be set by administrative users on the document type level and activity level.

Document type level

Authorizations on document type level are set for groups and buyer admin users. This authorization level defines the Worklist nodes that are available for the users, and it allows to restrict the users of a group to specific document type-related actions; for example, view the documents of a certain company code.

The following document types can be authorized.

Invoices
Purchase orders
Vendor master data
Vendor master change requests

Activity level

Authorizations on activity level are set for vendors and supplier users. You can set the authorizations to activities that are performed with the documents. For example, create invoices, submit invoices to the ERP system, attach images to invoices.

The following activities can be authorized for each document type.

Activity	Description
Admin	Administer vendor master data. For example, activate and deactivate a vendor
Attach	Upload attachments to documents
Audit trail	View the audit trail for documents
Enable duplicates	Select to enable invoice creation with reference numbers from rejected invoices In bulk mode, duplicate checks are skipped to improve performance.
Change	Change documents
Create	Create documents
Delete	Delete documents
Dynamic discounting	Apply dynamically discounted payment terms
Submit	Submit a draft invoice to the SAP system
Workflow	Trigger a workflow