- SAP Community
- Groups
- Interest Groups
- Application Development
- Discussions
- Access for the IT 0008 at the Program Level.
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Access for the IT 0008 at the Program Level.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-07-2009 3:31 PM
Friends
Quick question for your for the access for IT 008 for specific user.
User have the access for the PA30 Tcode for IT 008.
but user runs the Z* customized program to update IT 008 for specific Per number, he or she
can not update the IT 008 for the user.
There is not "authority-check" statement in the program
Please advise.
Thanks,
From
PT.
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-07-2009 3:51 PM
Hi Pranav,
PA30 default SU24 value for P_ORGIN is read only.You can check if user has Write (W) access to IT0008 in P_ORGIN. Other way is to provide access using the authority check for Z program
Thanks and Good Day
Santosh kumar
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-07-2009 3:51 PM
Hi Pranav,
PA30 default SU24 value for P_ORGIN is read only.You can check if user has Write (W) access to IT0008 in P_ORGIN. Other way is to provide access using the authority check for Z program
Thanks and Good Day
Santosh kumar
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-07-2009 4:13 PM
Yes the user was able to execute the PA30 manually and update IT 008 with current access.
but when user runs the program it is not updating.
I just checked the "authority-check" statement and program is not calling it.
Thanks,
From
PT.
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-07-2009 4:57 PM
Try running a trace (ST01 Authorization trace) and tell us what you see.
Cheers !!
Zaheer
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-07-2009 7:51 PM
Hi,
Try assigning the P_ABAP authorization objects which is used during the authorization check for HR Reports.
Give the report name in the REPID field
and in the COARS give 0,1, or 2 depending on the degree of simplification required.
Different values for COARS
: Authorization using
COARS = <BLANK> or no authorization. The authorization checks are to be processed as in
Authorization using
COARS = 1.The authorization checks for the infotype/subtype combination and for organizational assignment are to be checked separately. This means that a user is authorized to read a personnel number when he or she has a read authorization for all the infotypes (subtypes) requested by the program and that the user has a read authorization for the organizational assignment of the personnel number. Authorization using
COARS = 2. The authorization check is inactive.
Thanks.
Neha.
Erie.Edited by: Neha Kapoor on Apr 7, 2009 8:51 PM
Edited by: Neha Kapoor on Apr 7, 2009 8:53 PM
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-07-2009 8:15 PM
Just because you cannot see the checks in the report code or search for them (Crtl + F) does not mean that they are not there...
But prehaps this is a different "problem" or "security feature".
Display the program and via the menu Go To the attributes. Is there an entry in the field "Logical Database"?
Cheers,
Julius
- SAP Managed Tags:
- Security
