https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129870#M987547 <HTML><HEAD></HEAD><BODY><P>HI</P><P> Follow the link</P><P></P><P><A href="http://help.sap.com/saphelp_46c/helpdata/en/9f/db9b5e35c111d1829f0000e829fbfe/content.htm" target="test_blank">http://help.sap.com/saphelp_46c/helpdata/en/9f/db9b5e35c111d1829f0000e829fbfe/content.htm</A></P><P></P><P><A href="http://help.sap.com/saphelp_nw70/helpdata/en/9f/db9bb935c111d1829f0000e829fbfe/content.htm" target="test_blank">http://help.sap.com/saphelp_nw70/helpdata/en/9f/db9bb935c111d1829f0000e829fbfe/content.htm</A></P><P></P><P>explore the documentation </P><P></P><P></P><P>regards</P><P>PAVAN</P></BODY></HTML> Sat, 28 Jun 2008 04:35:55 GMT bpawanchand 2008-06-28T04:35:55Z https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129866#M987543 <HTML><HEAD></HEAD><BODY><P>Hi Experts,</P><P></P><P>Thedefinition of the logical database describes "central authorization checks for database accesses".</P><P></P><P>How the authorization check is performed? How can we give the authorization check to particular LDB? Based on the user we will give the authorization means where should we give the authority checks.</P><P></P><P>Im little bit confused. Can any one explain me about authorization checks in LDB.</P><P></P><P>Any links or materials also welcome.</P><P></P><P>Thanks in advance,</P><P>helps will be greatly appreciated.</P></BODY></HTML> Wed, 25 Jun 2008 19:38:46 GMT https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129866#M987543 Former Member 2008-06-25T19:38:46Z https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129867#M987544 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>when you write the code GET PERNR, then internally it will get the data based on the Auth check and a SET PERNR will be triggers</P><P></P><P>Thanks</P><P>VIkrnaht</P></BODY></HTML> Wed, 25 Jun 2008 19:45:22 GMT https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129867#M987544 Former Member 2008-06-25T19:45:22Z https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129868#M987545 <HTML><HEAD></HEAD><BODY><P>Hi Nandini,</P><P></P><P>In LDBs authorization checks are done automaticallly.</P><P></P><P>Please check this link</P><P><A class="jive_macro jive_macro_thread" href="https://community.sap.com/" __jive_macro_name="thread" modifiedtitle="true" __default_attr="928478"></A></P><P></P><P>Actually, if you're wirting report with PNP LDB, you do NOT need to do this hard-coded auth checking at all. Because the LDB abap code behind PNP has already do this job for you. </P><P>So all you need to do is to ask you HR consultant or Basis consultant to modify the authority config of certain ROLE with t-code PFCG, and then assign that ROLE to certain user with t-code SU01.</P><P>ABAP code behind PNP will automatically verify the current user according to his ROLE setting.</P><P></P><P>In some case you do not work with LDB report, then you need to do the authority check by yourself. General function AUTHORITY_CHECK is what you need. AUTHORITY_CHECK do the authority check by means of Authority Object.Belows are authority objects used in HR module(you can also see in PFCG if technial name switched on):</P><P>P_ORGIN HR: Master Data</P><P>PLOG Personnel Planning</P><P>P_PCLX HR: Clusters</P><P>P_TCODE HR: Transaction codes</P><P></P><P>Best regards,</P><P>raam</P></BODY></HTML> Fri, 27 Jun 2008 19:40:21 GMT https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129868#M987545 Former Member 2008-06-27T19:40:21Z https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129869#M987546 <HTML><HEAD></HEAD><BODY><P>hi,</P><P></P><P>Central Authorization check means that when you use any LDB in Ur Report program then u dont have to explicitly mention all the checks in your program. They have been taken care of while at the time of creation of LDB.</P><P></P><P>You can open a LDB in the Sytem and check the authorization.</P><P></P><P>Reward If helpful</P><P></P><P>Regards</P><P>Sumit Agarwal</P></BODY></HTML> Sat, 28 Jun 2008 04:28:17 GMT https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129869#M987546 Former Member 2008-06-28T04:28:17Z https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129870#M987547 <HTML><HEAD></HEAD><BODY><P>HI</P><P> Follow the link</P><P></P><P><A href="http://help.sap.com/saphelp_46c/helpdata/en/9f/db9b5e35c111d1829f0000e829fbfe/content.htm" target="test_blank">http://help.sap.com/saphelp_46c/helpdata/en/9f/db9b5e35c111d1829f0000e829fbfe/content.htm</A></P><P></P><P><A href="http://help.sap.com/saphelp_nw70/helpdata/en/9f/db9bb935c111d1829f0000e829fbfe/content.htm" target="test_blank">http://help.sap.com/saphelp_nw70/helpdata/en/9f/db9bb935c111d1829f0000e829fbfe/content.htm</A></P><P></P><P>explore the documentation </P><P></P><P></P><P>regards</P><P>PAVAN</P></BODY></HTML> Sat, 28 Jun 2008 04:35:55 GMT https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129870#M987547 bpawanchand 2008-06-28T04:35:55Z https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129871#M987548 <HTML><HEAD></HEAD><BODY><P>the authorisation for ldb is checked by this function module.</P><P>LDB_PROCESS..</P><P></P><P>if you debugg the ldb you will see the function module..</P><P>authority_check in side the ldb ...this is inbuilt...if the use had no authorisation then he cannot perform any action..</P></BODY></HTML> Sat, 28 Jun 2008 10:48:32 GMT https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129871#M987548 Former Member 2008-06-28T10:48:32Z https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129872#M987549 <HTML><HEAD></HEAD><BODY><P>Hi Nandini</P><P></P><P>Central authorization checks:</P><P></P><P>1. Authorization checks can be programmed centrally in the database to prevent them from being bypassed by simple application programs. </P><P></P><P>2. Authorization checks for central and sensitive data can be programmed centrally in the database to prevent them from being bypassed by simple application programs. </P><P></P><P>(A) Database program sapdb for logical database is a collection of subroutines, each of which is performed for specific events. For example, subroutine is processed once at the start of the database program. This program can be used to define default values for the selection screen of the LDB.</P><P></P><P>Other subroutines also exist that are processed during events PBO (Process Before Output) and PAI (Process After Input) of the selection screen. Checks, such as authorization checks (AUTHORITY-CHECK), are usually performed during event PAI.</P><P></P><P>(B) Some Transaction Codes related to Authorization checks of objects:</P><P></P><P>SU20 Maintain Authorization Fields (GoTo-&gt; Authorization Fields)</P><P>SU21 Maintain Authorization Objects (GoTo-&gt; Authorization Objects)</P><P>SU22 Auth. object usage in transactions</P><P>SU24 Disables Authorization Checks</P><P></P><P>Reward points if you find this information usefull.</P><P></P><P>Regards Harsh.</P><P></P><P>Edited by: Harsh Dave on Jun 28, 2008 5:53 PM</P></BODY></HTML> Sat, 28 Jun 2008 12:22:47 GMT https://community.sap.com/t5/application-development-and-automation-discussions/logical-data-base/m-p/4129872#M987549 Former Member 2008-06-28T12:22:47Z