Question Re: GRC 10.1 - Critical Action Risk CL30N in Financial Management Q&A

GRC 10.1 - Critical Action Risk CL30N

former_member633459 — Wed, 17 Apr 2019 16:54:12 GMT

Trying to understand the risk associated with tcode CL30N. The transaction by nature is display, uses an "Execute" activity (16) in C_KLAH_BSE which is the only relevant authorization object. I have read, however, that there is inherent functionality under the "Environment -> Define Function" that may override authorization checks. I cannot accurately test this theory. Just looking to better understand the exposure in this tcode.

Re: GRC 10.1 - Critical Action Risk CL30N

former_member787431 — Wed, 22 Dec 2021 08:31:46 GMT

Authorization objects :

C_KLAH_BSE (Authorization for Finding Objects) with ACTVT=16 and

C_TCLA_BKA (Authorization for Class Types) with KLART (Class Type)= the class type you enter on screen are

the two default Authorization objects that are required to successfully run the transaction CL3N

I further checked if Environment->Define Functions does call any other authorization objects but I didn't find any other authorization objects in the authorization trace.