Security at function level is ensured by making an association between a function and a user, and specifying whether or not the combination is allowed. User groups and function groups can be used to simplify the maintenance of the security. The security settings for a function is inherited by programs associated with that function in 'Function. Connect Program' (MNS112).
M3 Business Engine uses authorization by roles to manage security on a functional level. The program used for this is 'Function. Connect Authorization by Role' (SES400).