- SAP Community
- Groups
- Interest Groups
- Application Development
- Discussions
- Authoriztion for a function module
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Authoriztion for a function module
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-14-2008 2:20 PM
Hi all,
I am having problem assigning authorization for the RFC function Module Z_GET_META_OO that requires both S_TABU_DIS and Z_EIP_TABL.
The below given values provide the least possible restrictions for S_TABU_DIS, which allow users to view metadata for any table in the system.
ACTVT: 03
DICBERCLS: *
How can I assign this authorization to a user?
Regards,
Praveen.K.O
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-14-2008 2:54 PM
Hi Praveen,
You need to give the Authorizations to the RFC function module via the Auth Object S_RFC.
Also when a remote call of a function module is made, an automatic authorization check is performed, provided that the profile parameter auth/rfc_authority_check is set to 1.
The authorization check uses the authorization object S_RFC to check whether the user defined in the destination has RFC authorization for the function group of the called function module.
So I think you need to add S_RFC in the role along with S_TABU_DIS
Regards,
Kiran Kandepalli.
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-14-2008 3:29 PM
Try assigning only dicbercls 'SC' and any specific table group your application wants to read (or it will become visible) and see whether that works.
=> [SAP Note 1012218|https://service.sap.com/sap/support/notes/1012218]
Cheers,
Julius
- SAP Managed Tags:
- Security
