- SAP Community
- Groups
- Interest Groups
- Application Development
- Discussions
- what purpose the S_TCODE authorization object is u...
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
what purpose the S_TCODE authorization object is use
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-28-2006 8:02 AM
Dear Friends,
what purpose the S_TCODE authorization object is use, if we add this object manually then what to happen ( affect)
Thanks
Regards,
Sachin
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-29-2006 5:20 AM
Hi Sachin,
Check the docs in SAP help related to ur Q.
http://help.sap.com/saphelp_nw04s/helpdata/en/52/67129f439b11d1896f0000e8322d00/content.htm
its a small expl on authority checks which is helpful in understanding the area..
Br,
Sri
Award points for helpful answers
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-28-2006 8:51 AM
Hi,
S_TCODE is the first level of Check for execution of any transaction.
Lets say you want to execute the Tcode PFCG then you must have S_TCODE containing PFCG as a value to successfully enter the Tcode. This object makes sure that you are only entering the tcodes which you are authorized too.
When you manually add the S_TCODE in the role then you are creating a backdoor door. Now a person can enter into tcodes which might not be present in the Role menu but are present in the S_TCODE Manually added instance. So its best practice to make sure never to add manually a S_TCODE object as far as possible.
Regards,
Manohar
Message was edited by:
Manohar Kappala
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-28-2006 8:57 AM
Hi,
Each transaction code must have S_TCODE authorization object.
Because when you type any T-code in commanad field this authorization object will trigger first.
Manually added is not recommanded.
i think it will help u
kiran kumar.v
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-28-2006 1:54 PM
Hi
Definition
Whenever a transaction is started, the kernel uses the transaction code as the value to check against the authorization object. This check always takes place (from Rel. 3.0E) and cannot be deactivated by the developer.
Defined fields
TCD: Transaction code
I hope this is clear
Cheers
Soma
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-29-2006 5:20 AM
Hi Sachin,
Check the docs in SAP help related to ur Q.
http://help.sap.com/saphelp_nw04s/helpdata/en/52/67129f439b11d1896f0000e8322d00/content.htm
its a small expl on authority checks which is helpful in understanding the area..
Br,
Sri
Award points for helpful answers
- SAP Managed Tags:
- Security
