https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124438#M1511560 <HTML><HEAD></HEAD><BODY><P>Thanks for the reply. We plan to restrict only by authorization. This will be checked in ABAP coding of interfaces. </P><P></P><P>However we have a restriction to use standard SAP objects, since we ship our product to various customers. </P><P></P><P>Regards, </P><P>Harish</P></BODY></HTML> Tue, 20 Jul 2010 20:06:29 GMT Former Member 2010-07-20T20:06:29Z https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124436#M1511558 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>We have interfaces which sends the Config &amp; master data to third party application(Non SAP).</P><P></P><P>In typical integration environment, we send all Config data like Company code, plant, Sales Org etc via interfaces. We also send transaction data like Customer, vendor.</P><P></P><P>We are trying to put security checks so that, person who has create Company code authorization ( we can even settle for change/display) can only run this interface ( to send the company code data to 3rd party application)</P><P></P><P>I tried looking &amp; setting trace using ST01. While creating company it checks 'S_TABU_DIS" which is for table maint. This may not work for our kind of requirement.</P><P></P><P>Is there any way/authorization object , by which SAP can restrict creation of SPRO data, like Company Code, Sale Area etc and is this general auth or combined.</P><P></P><P>Thanks for your time</P><P></P><P>Regards</P><P>Harish</P></BODY></HTML> Tue, 20 Jul 2010 19:11:00 GMT https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124436#M1511558 Former Member 2010-07-20T19:11:00Z https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124437#M1511559 <HTML><HEAD></HEAD><BODY><P>SPRO is a "spider web" transaction it needs table access to execute many of the actions in SPRO</P><P></P><P>For your need if you are able to group the table access to an authorization group , you can restrict the access to display only.</P><P></P><P></P><P>I think your tasks are convoluted some of the authority checks you might capture but still table access will be an issue</P><P></P><P>Any plans on customization? or you have to restrict through authorizations only.</P></BODY></HTML> Tue, 20 Jul 2010 20:02:10 GMT https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124437#M1511559 Former Member 2010-07-20T20:02:10Z https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124438#M1511560 <HTML><HEAD></HEAD><BODY><P>Thanks for the reply. We plan to restrict only by authorization. This will be checked in ABAP coding of interfaces. </P><P></P><P>However we have a restriction to use standard SAP objects, since we ship our product to various customers. </P><P></P><P>Regards, </P><P>Harish</P></BODY></HTML> Tue, 20 Jul 2010 20:06:29 GMT https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124438#M1511560 Former Member 2010-07-20T20:06:29Z https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124439#M1511561 <HTML><HEAD></HEAD><BODY><P>Harish,</P><P></P><P>Go for custom authorization object.</P><P>Or give access to particular node wise based on modules</P><P></P><P>Thanks,</P><P>Sri</P><P></P><P>Edited by: sri on Jul 20, 2010 5:15 PM</P></BODY></HTML> Tue, 20 Jul 2010 20:39:50 GMT https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124439#M1511561 Former Member 2010-07-20T20:39:50Z https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124440#M1511562 <HTML><HEAD></HEAD><BODY><P>Then I would suggest to work with an ABAPER to secure the interface and also look at SAP standard delivered roles which match your requirement and create a custom transaction/program to execute what you need.</P><P></P><P>ST01 should provide you all that SAP is capable following normal standards</P></BODY></HTML> Tue, 20 Jul 2010 20:50:30 GMT https://community.sap.com/t5/application-development-and-automation-discussions/sap-auth-for-spro-objects/m-p/7124440#M1511562 Former Member 2010-07-20T20:50:30Z