08-11-2009 8:15 AM
Dear All ,
Does SAP provide any report to list all the Authorization Object ? and which object is belong to which transaction code ?
Thanks .
08-11-2009 8:26 AM
Dear All ,
How about in report format ? can we see it in report view ?
THanks
08-11-2009 8:18 AM
>
> Dear All ,
>
> Does SAP provide any report to list all the Authorization Object ? and which object is belong to which transaction code ?
>
>
> Thanks .
Hello,
Does SAP provide any report to list all the Authorization Object ? --> T-Code: SU21 (table TOBJ)
and which object is belong to which transaction code ? --> SU24
BR,
Suhas
08-11-2009 8:19 AM
TOBJ ->table
this lists all auth objects
TACTZ
all activities of that obj
AUSOBT
Relation transaction > authorization object
Edited by: soumya prakash mishra on Aug 11, 2009 9:19 AM
08-11-2009 8:26 AM
Dear All ,
How about in report format ? can we see it in report view ?
THanks
08-11-2009 8:29 AM
Hello,
What do you mean by "report format" ??
I think the t-codes SU21 & SU24 provide the data in report format itself. If you need any other report format you need to code.
BR,
Suhas
08-11-2009 8:31 AM
create a report... use these tables to fetch and display it in a ALV. purpose solved.
08-11-2009 8:40 AM
hi olrang ,
STEP BY STEP TO CREATE AUTHORIZATION OBJECT:
STEP1: goto SU21 transaction and create a new Authorization Object
Object Name: Z.....
Text: ...........
ClassL SD (YOUR MODULE)
AUTHOR: YOUR ID
STEP2: Give authorizatin fields as
ACTION - Action of the Authorization
Activity - Document Destribution.
STEP3: Basis will create a role using transaction PFCG and assign this authorization object to that role.
STEP4: Call the AUTHORITY-CHECK Object in your code.
AUTHORITY-CHECK OBJECT <authorization object>
ID <authority field 1> FIELD <field value 1>.
ID <authority field 2> FIELD <field value 2>.
IF sy-subrc 0.
MESSAGE e000(zzpp) WITH 'No Authorization'.
ENDIF.
and it belongs to SU24 transaction code
Saurabh Goel
05-14-2015 6:05 PM
08-19-2015 1:52 PM
01-09-2020 9:14 AM
For the list of objects along with su24 values for a given list of transactions is available in USOBT_C which is the same data that is pulled while role building.
TACTZ outputs all the permitted activities for a given object in su21 which is again restricted in su24 at every transaction level depending on the usage.
Example: F_LFA1_GRP has permitted activities: 01 02 03 05 06 08 C8 F4 (TACTZ and SU21).
if you take any two transactions(for example) for a given above object the activities in su24 are different and limited due to security reasons.
TOBJ provides the list of fields that are part of the object.