https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977653#M1340303 <HTML><HEAD></HEAD><BODY><P>Dear James,</P><P></P><P>Table level security is provided mainly by three authorization objects S_TABU_DIS, S_TABU_LIN , S_TABU_CLI .</P><P></P><P>S_TABU_DIS is used to restrict the acces to a table through the authorization group assigned to that table and the activity give.</P><P></P><P>S_TABU_LIN ,, If you want to secure more i.e , table for specific company code , you can use S_TABU_LIN where you will specify the Organizational criteria to restrct the access.</P><P></P><P>S_TABU_CLI can be used to restrict the cross client table access </P><P></P><P>Thank you</P></BODY></HTML> Fri, 28 Aug 2009 09:09:36 GMT Former Member 2009-08-28T09:09:36Z https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977650#M1340300 <HTML><HEAD></HEAD><BODY><P>I am working with the EH&amp;S system and need to find a way to restrict access to certain data. An example would be restricting the ability to view composition data. (Stored in table ESTVP). Does anyone have any idea how to do this?</P></BODY></HTML> Thu, 06 Aug 2009 15:49:11 GMT https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977650#M1340300 Former Member 2009-08-06T15:49:11Z https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977651#M1340301 <HTML><HEAD></HEAD><BODY><P>I would investigate the possibility of moving that table to its own authorization group and then limiting access to that authorization gruop.</P><P>Two things to be concerned about, off the top of my head:</P><P>Current access to that table would suddenly stop.</P><P>Would SAP have an issue with customers moving delivered tables to custom auth groups.</P><P>On the security side, you would have to modify any current roles that need access to this table to include the new auth group if any.</P><P>Create a new role or modify existing ones for the users that need to access this table.</P><P>J.</P></BODY></HTML> Thu, 06 Aug 2009 16:05:28 GMT https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977651#M1340301 Former Member 2009-08-06T16:05:28Z https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977652#M1340302 <HTML><HEAD></HEAD><BODY><P>Hi James,</P><P></P><P>You can do this with the auth object S_TABU_DIS , with corresponding auth group and actvity.</P><P></P><P>If the users are directly accessing the table through SM30, SE16 or SE11 .. etc, you can better have an table transaction created for this table (an abaper could help you in creating this) and can restrict the access by assigning to the appropriate roles.</P><P></P><P>Nanda</P></BODY></HTML> Thu, 06 Aug 2009 16:19:44 GMT https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977652#M1340302 Former Member 2009-08-06T16:19:44Z https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977653#M1340303 <HTML><HEAD></HEAD><BODY><P>Dear James,</P><P></P><P>Table level security is provided mainly by three authorization objects S_TABU_DIS, S_TABU_LIN , S_TABU_CLI .</P><P></P><P>S_TABU_DIS is used to restrict the acces to a table through the authorization group assigned to that table and the activity give.</P><P></P><P>S_TABU_LIN ,, If you want to secure more i.e , table for specific company code , you can use S_TABU_LIN where you will specify the Organizational criteria to restrct the access.</P><P></P><P>S_TABU_CLI can be used to restrict the cross client table access </P><P></P><P>Thank you</P></BODY></HTML> Fri, 28 Aug 2009 09:09:36 GMT https://community.sap.com/t5/application-development-and-automation-discussions/table-level-security/m-p/5977653#M1340303 Former Member 2009-08-28T09:09:36Z