Create a single role in SAP using the PFCG transaction

1. Log in to the SAP system using an account with administrative privileges.
2. Access the PFCG transaction by entering "PFCG" in the command field and pressing Enter.
3. In the Role Maintenance screen, click on the "Create" button or go to the menu and select Role → Create.
4. Enter a unique name for the role in the Role field and provide a short description in the Description field.
5. Optionally, you can enter additional information such as the package name, responsible person, and other details in the General Data tab.
6. Click on the "Save" button to create the role. The system will generate a role ID and display it on the screen.
7. In the Authorization tab, you can define the authorizations for the role by adding transactions, authorization objects, and other authorization elements.
8. To add transactions, click on the "Add object" button and enter the transaction code(s) or transaction code ranges for the desired access.
9. To add authorization objects, click on the "Add object" button, select the desired authorization object, and specify the necessary field values and activity.
10. You can continue adding additional authorization elements as per your requirements.
11. In the Menu tab, you can assign menu options to the role by selecting the desired menus and submenus from the available options.
12. In the Additional Functions tab, you can perform additional tasks like maintaining default values, assigning organizational levels, etc., if required.
13. Once you have defined the authorizations, menus, and additional functions for the role, click on the "Save" button to save your changes.
14. After saving, you can navigate to the User tab to assign users to the role if needed. Click on the "Add user" button, enter the user IDs, and click on the green checkmark icon to add them.
15. Once the role is created and users are assigned, it is important to perform thorough testing and ensure that the role provides the desired access and functionality.
16. Inform the relevant users about their role assignment and instruct them to log in using their assigned role.