07-10-2009 5:49 AM
Hi,
I have a standard table. This table has "Display/Maintenance allowed".
This table has an authorization group "SA" and an authorization object "S_TABU_DIS" assigned to it.
I want to change the authorization group of this table. What can be its impact as a whole? Can I assign any Authorization group to this table? What is the transaction to create authorization group?
Any reply to this is appreciated.
Thanks & Regards,
Mayank Agarwal
07-10-2009 6:04 AM
Hi
you can create authorization group in transaction SE54. It just defines the authorization group and its objects.the authorization group allows extended authorization protection for particular objects. The authorization groups are freely definable. They usually occur in authorization objects together with an activity. You can check them at table TBRG.
Thanks
Viquar Iqbal
07-10-2009 5:58 AM
07-10-2009 6:04 AM
Hi
you can create authorization group in transaction SE54. It just defines the authorization group and its objects.the authorization group allows extended authorization protection for particular objects. The authorization groups are freely definable. They usually occur in authorization objects together with an activity. You can check them at table TBRG.
Thanks
Viquar Iqbal
07-10-2009 6:06 AM
HI Mayank,
When we change the authorization we need to specify or adjust the change.What i mean to say the roles for the user created earlier or any work flow item created that is the change of authorization object should be manged well so as to satisfy that any other user do not face the problem or there is no problem in execution of various report or ABAP objects.Simply to say we need to update every where for the same. Hope your query resolves soon.
Have a best day ahead.
08-27-2009 3:58 PM
Mayanek,
Whether to change or not change the authorization group to a standard table depends on how your PFCG roles are deployed in the environment. Basically you are trying to override the start SAP checks. For example in your case the group SA might be checked by some standard roles and profiles (at the program level). If you are not concerned about this then you'll be fine to override this group.
Sundar