Re: AUTHORITY-CHECK FOR CUSTOM TCODE

Former Member · ‎2016 May 03

Dear experts ,

i am facing a problem that i have to give the authorization of my custom tcode which contains simple report to the specific user ?

please share with me if you know how to do.

Thank you.

jogeswararao_kavala · ‎2016 May 03

Create a Role with Auth Object S_TCODE like shown below (tcode PFCG) and assign to the users.

PeterJonker · ‎2016 May 03

Addition to the post of Jogeswara:

I think you also need to fill the field Authorization object in the transaction code with S_TCODE for it to work. (n SE93)

jogeswararao_kavala · ‎2016 May 03

I always did without that. But the role works. I did not use SE93 Auth Obj field ever. It is always blank.

Former Member · ‎2016 May 03

Thank you sir for your valuble response.

please guide me how to assign this role to the users in IDES system.

Thank you.

jogeswararao_kavala · ‎2016 May 03

Approach to your BASIS (or SECURITY) group , Tell your requirement and show this discussion. They will make a Role and assign to users as per your list. Discussions beyond this will be very basic.

PeterJonker · ‎2016 May 03

OK, well here we always fill it. So what you are saying is that it is not necessary. I didn't know that.

Former Member · ‎2016 May 03

Actually there is no BASIS people in my office now . That is the problem.

In PFCG , there is a USER tab is there can i add the users there who are not authorized to execute that Tcode.

2) Is it required to add AUTHORITY-CHECK in the program under TCODE.

jogeswararao_kavala · ‎2016 May 03

No I never used Authority check in my Z-programs.
Developed a Z-program
Created a ZTcode for this program
Got created a Role as given above
Assigned to users.

pranay570708 · ‎2016 May 03

1. Create authorization object for your tcode in SU21.

2. Create a role via PFCG tcode to attach your authorization object. Select the “Authorizations” tab. And Click on the icon next to “profile name”to generate a Profile name and a description for the same. Click on the “Change authorization data, You’ll see a new screen with the Role Name on top left. Here you will have to add your ‘Authorization Object’. you need to add values (Employee numbers) in your object, for those who would be given authorization. Save and then Generate the profile by clicking on ‘generate’ icon.

3. if you want to give authorizations, Go to Transaction SU01, click on the Roles tab and assign role name.

4. you need to write a small code in your report for authorization check:

AUTHORITY-CHECK OBJECT 'ZTCODE'.
IF sy-subrc <> 0.
MESSAGE 'No authorization' TYPE 'E'.
Endif.

Former Member · ‎2016 May 04

Anytime you execute a transaction, SAP checks automatically authorization object S_TCODE.

Custom authorization object are used in order to give differents kind of access to some funcionalities in the same transaction /program. eg. Read Only vs Write.

If any user that is allowed to execute your custom transaction, lets call it ZTCODE, can do anything in that transaction, is not necessary to create customer authorization object and check it in your program/transaction.

If this is your scenario, you have just to follow Jogeswara Rao Kavala instructions.

By Category

Related Content

Activity Groups

Industry Groups

Influence and Feedback Groups

Interest Groups

Location Groups

Customer Only Groups

Forums

Related Resources

Products

Learning and Support

About

My Account

My Account

AUTHORITY-CHECK FOR CUSTOM TCODE