topic direct database data access without data level authorization check in Application Development and Automation Discussions https://community.sap.com/t5/application-development-and-automation-discussions/direct-database-data-access-without-data-level-authorization-check/m-p/7109336#M1509508 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>My customer raised issue about direct database data access. Due to the customeru2019s strong security policy, it shouldnu2019t be allowed. </P><P>To prevent this kind of illegal data access, customer ask me to list up all the possibilities to display data without data level authorization check.</P><P></P><P>The things in my mind are </P><P></P><P>SQL Command Editor (for Oracle based system) : ORASPACE, DB02, ST04</P><P>Query Based : SQVI (Quick Viewer), SQ01/SQ02/SQ03 (SAP Query)</P><P>Data Browser : SE11, SE12, SE16, SE16N, SE17</P><P>Table Maintenance : SM30</P><P>Function Module : RFC_READ_TABLE</P><P>Function Module : DB_EXECUTE_SQL (DML)</P><P></P><P>Anyone knows anything which is not listed above?</P><P></P><P>Thanks</P></BODY></HTML> Fri, 30 Jul 2010 00:44:07 GMT jihoon_kim 2010-07-30T00:44:07Z direct database data access without data level authorization check https://community.sap.com/t5/application-development-and-automation-discussions/direct-database-data-access-without-data-level-authorization-check/m-p/7109336#M1509508 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>My customer raised issue about direct database data access. Due to the customeru2019s strong security policy, it shouldnu2019t be allowed. </P><P>To prevent this kind of illegal data access, customer ask me to list up all the possibilities to display data without data level authorization check.</P><P></P><P>The things in my mind are </P><P></P><P>SQL Command Editor (for Oracle based system) : ORASPACE, DB02, ST04</P><P>Query Based : SQVI (Quick Viewer), SQ01/SQ02/SQ03 (SAP Query)</P><P>Data Browser : SE11, SE12, SE16, SE16N, SE17</P><P>Table Maintenance : SM30</P><P>Function Module : RFC_READ_TABLE</P><P>Function Module : DB_EXECUTE_SQL (DML)</P><P></P><P>Anyone knows anything which is not listed above?</P><P></P><P>Thanks</P></BODY></HTML> Fri, 30 Jul 2010 00:44:07 GMT https://community.sap.com/t5/application-development-and-automation-discussions/direct-database-data-access-without-data-level-authorization-check/m-p/7109336#M1509508 jihoon_kim 2010-07-30T00:44:07Z Re: direct database data access without data level authorization check https://community.sap.com/t5/application-development-and-automation-discussions/direct-database-data-access-without-data-level-authorization-check/m-p/7109337#M1509509 <HTML><HEAD></HEAD><BODY><P>HI,</P><P> Generally in production user's should not be given all these authorizations.</P><P></P><P>Ram.</P></BODY></HTML> Fri, 30 Jul 2010 04:10:30 GMT https://community.sap.com/t5/application-development-and-automation-discussions/direct-database-data-access-without-data-level-authorization-check/m-p/7109337#M1509509 former_member440650 2010-07-30T04:10:30Z