https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534511#M1656922 <HTML><HEAD></HEAD><BODY><P>Hi Experts,</P><P></P><P>I am learning SAP Security.</P><P></P><P>I have one question , what is the necessity of creating new authroization field and object , when SAP gives a huge list of objects /fields.</P><P></P><P>Is there any reason behind like, whenever a customised transaction is created, a new authorization object or filed has to be created?</P><P></P><P>Regards,</P><P>Rekharaj</P></BODY></HTML> Fri, 10 Feb 2012 12:58:17 GMT Former Member 2012-02-10T12:58:17Z https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534511#M1656922 <HTML><HEAD></HEAD><BODY><P>Hi Experts,</P><P></P><P>I am learning SAP Security.</P><P></P><P>I have one question , what is the necessity of creating new authroization field and object , when SAP gives a huge list of objects /fields.</P><P></P><P>Is there any reason behind like, whenever a customised transaction is created, a new authorization object or filed has to be created?</P><P></P><P>Regards,</P><P>Rekharaj</P></BODY></HTML> Fri, 10 Feb 2012 12:58:17 GMT https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534511#M1656922 Former Member 2012-02-10T12:58:17Z https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534512#M1656923 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>I recommend to use them when a standard SAP object does not provide the functionality that you require. </P><P></P><P>One example would be where you have a custom transaction with fields or functionality which do not relate to the standard authorisation schema. </P><P></P><P>On the other side, if you have a development which is related to posting an FI document and is controlled via company code then you can pick from standard.</P></BODY></HTML> Fri, 10 Feb 2012 13:32:05 GMT https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534512#M1656923 Former Member 2012-02-10T13:32:05Z https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534513#M1656924 <HTML><HEAD></HEAD><BODY><P>Thank You Alex</P></BODY></HTML> Fri, 10 Feb 2012 13:48:15 GMT https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534513#M1656924 Former Member 2012-02-10T13:48:15Z https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534514#M1656925 <HTML><HEAD></HEAD><BODY><P>Trick is to find not only a standard authorization object with the same field you are looking for, but an object already assigned to the users with those roles with the same semantic for all it's fields - so that you can simply reuse the existing concept which is also assigned to the sets of users.</P><P></P><P>Often you will find "base" function modules and classes you can use to do all that work for you. Just call them at the correct location in the code and dont forget to check the return code and react to it.</P><P></P><P>If you use BAPI APIs to access or process data, then many of them make these same semantically correct checks "out of the box".</P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Fri, 10 Feb 2012 22:04:43 GMT https://community.sap.com/t5/application-development-and-automation-discussions/when-to-create-new-authorization-objects/m-p/8534514#M1656925 Former Member 2012-02-10T22:04:43Z