https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716332#M630003 <HTML><HEAD></HEAD><BODY><P>Look at the Page <A href="http://help.sap.com/" target="test_blank">http://help.sap.com/</A> ore use The transaktion </P><P>SU53</P><P></P><P>BY Chris</P></BODY></HTML> Mon, 13 Aug 2007 11:05:55 GMT Former Member 2007-08-13T11:05:55Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716329#M630000 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>how do v use Authorization.</P><P></P><P>Thanks,</P><P>Mohit.</P></BODY></HTML> Mon, 13 Aug 2007 11:02:41 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716329#M630000 Former Member 2007-08-13T11:02:41Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716330#M630001 <HTML><HEAD></HEAD><BODY><P>Hi </P><P></P><P>Authorization part wil be taken care by BASIS people </P><P></P><P>reward if usefull</P></BODY></HTML> Mon, 13 Aug 2007 11:04:52 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716330#M630001 Former Member 2007-08-13T11:04:52Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716331#M630002 <HTML><HEAD></HEAD><BODY><P>hi</P><P>good</P><P></P><P>The SAP authorization concept protects transactions, programs, and services in SAP systems from unauthorized access. On the basis of the authorization concept, the administrator assigns authorizations to the users that determine which actions a user can execute in the SAP System, after he or she has logged on to the system and authenticated himself or herself.</P><P></P><P>To access business objects or execute SAP transactions, a user requires corresponding authorizations, as business objects or transactions are protected by authorization objects. The authorizations represent instances of generic authorization objects and are defined depending on the activity and responsibilities of the employee. The authorizations are combined in an authorization profile that is associated with a role. The user administrators then assign the corresponding roles using the user master record, so that the user can use the appropriate transactions for his or her tasks.</P><P></P><P><A href="http://help.sap.com/saphelp_nw2004s/helpdata/en/52/671285439b11d1896f0000e8322d00/content.htm" target="test_blank">http://help.sap.com/saphelp_nw2004s/helpdata/en/52/671285439b11d1896f0000e8322d00/content.htm</A></P><P></P><P>thanks</P><P>mrutyun^</P></BODY></HTML> Mon, 13 Aug 2007 11:05:31 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716331#M630002 Former Member 2007-08-13T11:05:31Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716332#M630003 <HTML><HEAD></HEAD><BODY><P>Look at the Page <A href="http://help.sap.com/" target="test_blank">http://help.sap.com/</A> ore use The transaktion </P><P>SU53</P><P></P><P>BY Chris</P></BODY></HTML> Mon, 13 Aug 2007 11:05:55 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716332#M630003 Former Member 2007-08-13T11:05:55Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716333#M630004 <HTML><HEAD></HEAD><BODY><P>Hi</P><P></P><P>Checking User Authorizations in your ABAP Program </P><P>How to set Authorization to an ABAP Programs? </P><P></P><P>Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction. </P><P></P><P>If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check. </P><P></P><P>This means you have to allocate an authorization object in the definition of the transaction. </P><P></P><P>&lt;b&gt;For example:&lt;/b&gt; </P><P></P><P>program an AUTHORITY-CHECK. </P><P></P><P>AUTHORITY-CHECK OBJECT &lt;authorization object&gt; </P><P>ID &lt;authority field 1&gt; FIELD &lt;field value 1&gt;. </P><P>ID &lt;authority field 2&gt; FIELD &lt;field value 2&gt;. </P><P>... </P><P>ID &lt;authority-field n&gt; FIELD &lt;field value n&gt;. </P><P></P><P>The&lt;b&gt; OBJECT&lt;/b&gt; parameter specifies the authorization object. </P><P></P><P>The &lt;b&gt;ID&lt;/b&gt; parameter specifies an authorization field (in the authorization object). </P><P></P><P>The &lt;b&gt;FIELD&lt;/b&gt; parameter specifies a value for the authorization field. </P><P></P><P>The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields. </P><P></P><P>Use T/Code SE80 to Create Authorization object. </P><P></P><P>You can assign Authorization object to a transaction.</P><P></P><P>Use T/code SE93 and --&gt; Create Ztransation --&gt; Add your authorization object in "Authorization object" field.</P><P></P><P></P><P>Who ever want to execute this transaction must have the authorizations as you have mentioned in ur authorization object.</P><P></P><P>Authorization groups are created in SE54.</P><P></P><P>authorization object are assigned to dataelements</P><P>wheres are authoriz groups are assigned to tables </P><P></P><P>&lt;b&gt;reward poinys for useful ans&lt;/b&gt;</P><P>&lt;i&gt;Regards</P><P>Ankit&lt;/i&gt;</P></BODY></HTML> Mon, 13 Aug 2007 11:10:51 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716333#M630004 Former Member 2007-08-13T11:10:51Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716334#M630005 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P></P><P>The main use of Authority object Check is to give authorization to the specific users. If Authority check is not given any user can use the program or table.</P><P></P><P>Ex:- In the below example i am applying the authority check for the specific t_code. </P><P></P><P>AUTHORITY-CHECK OBJECT 'S_TCODE'</P><P>ID 'TCD'</P><P>FIELD c_tcode.</P><P></P><P>IF sy-subrc NE 0.</P><P>MESSAGE e000(38) WITH text-002.</P><P>ENDIF.</P><P></P><P>in the above example 'S_TCODE'is the Object name, &#145;TCD&#146; is the object id and c_tcode is the field name which we have used in our program.</P><P></P><P></P><P></P><P>Reward points if useful. </P><P></P><P>Thanks &amp; Regards,</P><P>Vasudeva Rao.</P></BODY></HTML> Mon, 13 Aug 2007 12:15:20 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization/m-p/2716334#M630005 Former Member 2007-08-13T12:15:20Z