https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818060#M1469854 <HTML><HEAD></HEAD><BODY><P>Karthik,</P><P></P><P>Follow Martin's approach as you really should be concered with the S_TABU_DIS authorization for change on that authorization group. If the user has that access pull other tcodes like "SE16N, SM30, OB58, or other table edit transactions" they will be able to edit the values.</P><P></P><P>Thanks,</P><P></P><P>Matt</P></BODY></HTML> Tue, 20 Apr 2010 17:36:13 GMT Former Member 2010-04-20T17:36:13Z https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818055#M1469849 <HTML><HEAD></HEAD><BODY><P>Hello Guru's</P><P></P><P>Ob58 tcode was assigned to few users and I would like to find out to how many users ob58 change access autiorization was given.Is there any way to find out.</P><P></P><P>Help me..</P><P></P><P>Regrds</P><P>Krithika</P></BODY></HTML> Tue, 20 Apr 2010 04:40:51 GMT https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818055#M1469849 Former Member 2010-04-20T04:40:51Z https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818056#M1469850 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P>in table AGR_1251 (via SE16) you can look for your requested authorization object and find out roles, which have the requested authorization. Afterwards you can search for users, who have got these roles.</P><P></P><P>Or you can go via SUIM and look for users by complex selection criteria - by authorization values.</P><P></P><P>Regards,</P><P>Julia</P></BODY></HTML> Tue, 20 Apr 2010 06:12:51 GMT https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818056#M1469850 Former Member 2010-04-20T06:12:51Z https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818057#M1469851 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>please search before posting. Similar questions to yours have been answered on this forum. Basically, OB58 corresponds to SM30 for view V_T011 (you can see it from SE93). In SE11 you can see the authorization group assigned to this view. So you are looking for all users who have authorization for object S_TAB_DIS ACTVT = 02 and DICBERCLS = &lt;group assigned to V_T011&gt;. You can get the list using one of the SUIM reports.</P><P></P><P>Cheers</P></BODY></HTML> Tue, 20 Apr 2010 06:22:25 GMT https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818057#M1469851 mvoros 2010-04-20T06:22:25Z https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818058#M1469852 <HTML><HEAD></HEAD><BODY><P>Hi ,</P><P> </P><P>Execute , SUIM --&gt; Roles by transactions , Put tcode : OB58 , You will find list of roles who have authorization for tcode OB58 . Take list of roles and execute SE16N , Enter AGR_1251</P><P></P><P>Enter all roles in Field : AGR_NAME &amp; Put in FIELD : ACTVT Execute it , You will find roles with all defined activites . </P><P>Now take list of roles ine excel , Filter with Activity = 2 (change).Take roles , Now Execute SUIM -- &gt; Users by roles . </P><P></P><P>You will find list of users who have change access for tcode OB58</P><P></P><P>Let me know ,If any confusion .</P><P></P><P>Regards</P><P>Vikas</P></BODY></HTML> Tue, 20 Apr 2010 06:48:03 GMT https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818058#M1469852 Former Member 2010-04-20T06:48:03Z https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818059#M1469853 <HTML><HEAD></HEAD><BODY><P>I think Your Idea is right, but the steps arent accurate. It is good to follow Martin's suggestion.</P><P></P><P>WHY? the approach of checking only on the activity 02 would give you faluty results. If i have OB58 and VF02 and some other change transactions in the same role, and there is activity 02 for a host of objects but for S_TABU_DIS i have activity 03, such a role would be displayed in your list and the end user who you think can make changes using OB58, in fact cannot do it</P></BODY></HTML> Tue, 20 Apr 2010 11:42:24 GMT https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818059#M1469853 Former Member 2010-04-20T11:42:24Z https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818060#M1469854 <HTML><HEAD></HEAD><BODY><P>Karthik,</P><P></P><P>Follow Martin's approach as you really should be concered with the S_TABU_DIS authorization for change on that authorization group. If the user has that access pull other tcodes like "SE16N, SM30, OB58, or other table edit transactions" they will be able to edit the values.</P><P></P><P>Thanks,</P><P></P><P>Matt</P></BODY></HTML> Tue, 20 Apr 2010 17:36:13 GMT https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818060#M1469854 Former Member 2010-04-20T17:36:13Z https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818061#M1469855 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>By SUIM you can get the data. Goto SUIM<DEL>&gt;expand the users by complex selection Criteria</DEL>&gt;Click on By transaction Authorisations..Provide the transaction which you wanted to search the users list and click on execute... you will get the list of userids which are all having the access to particular transaction(s).</P></BODY></HTML> Tue, 27 Apr 2010 14:28:29 GMT https://community.sap.com/t5/application-development-and-automation-discussions/regarding-change-authorization/m-p/6818061#M1469855 Former Member 2010-04-27T14:28:29Z