Solved: How to know Which T-Code belongs to which auth.obj...

Former Member · ‎05-27-2007

Hello Friends,

<b>Lets say a user has got authorization to execute SU01.

Now I want to know to which auth.object this t-code belongs to and which activity the user is having for that t-code?

can u explain it step by step how to check this?</b>

Former Member · ‎05-28-2007

Hello Rakesh,

you can get the complete list of auth. objects under a transaction with help of su24. For checking what activities a user have........you have to check the roles that user have and different activities under auth.obj in those roles. Rather you can use transaction S_BCE_68001425...from here you can select neccessary combinations to get the roles that user have for different obj activities.

Award points if helpful,

Regards,

Raju.

Former Member · ‎05-27-2007

Hi,

You can use transaction.su24.

Regards

Ben

Former Member · ‎05-28-2007

Hello Rakesh,

you can get the complete list of auth. objects under a transaction with help of su24. For checking what activities a user have........you have to check the roles that user have and different activities under auth.obj in those roles. Rather you can use transaction S_BCE_68001425...from here you can select neccessary combinations to get the roles that user have for different obj activities.

Award points if helpful,

Regards,

Raju.

manohar_kappala2 · ‎05-29-2007

Hi,

Perhaps the shortest way is to run a trace against the user with the role and you get to know the Auth Objects list which are checked in the previous action.

For running the trace Go to ST01 and select Authorization Check related option and then press Trace On. This might differ slightly from Version to version but it the same process on a broader sense.

Normally for SU01 the objects which are mainly checked are:

S_USER_GRP

S_USER_AGR

S_USER_PRO

S_USER_SAS

Now depending on what a person needs to be able to do for a User ID

You control that using the ACTVT field

with

01 for create

02 for change

03 for display

06 for delete etc..

Hope this helps

Former Member · ‎05-29-2007

Hi Rakesh,

Basically every T-Code is made up of auth.objects. To know what objects are used for the T-code use Tcode SU24.

In the initial screen enter the T-code SU01 (execute (f8) or click on clock icon)

In the second screen you will have three buttons.

1.Check indicator (display)

2. Check Indicator (change pencil icon)

3. Value list

Click on 1st button Check Indicator (only Display)

You will be promted with list of objects.

U N C CM Check ID Object Object name

Now check for the objects which are CM (checked and maintianed)

The same objects will be displayed in the roles where you have assigned the T-code SU01.

To Display the field values for each object which are maintained click on the button Field Values.

You will be prompted with (default /maintained) values assigned for each object.

But..

To know exact values (activity values) you need to check in the role.

Make a list of all the objects availabe in the SU24 check for the same in the role.

Hope now its clear

If you need more info let me know

cheers

Soma

Former Member · ‎05-29-2007

You might look at table TSTCA.

Former Member · ‎05-30-2007

Check table USOBT_C via SE17 tcode

Name - Transaction

Object - Authorization object.

This will give tcode used by a Auth. object with field values and Auth. objects used by a particular Tcode.

Hope this helps..

Anil

How to know Which T-Code belongs to which auth.obj?