You can do an F4 help to get the list of objects in the SE38-> Attributes screen..

- Guru

Hi,

I HAVE A PROGRAM FOR WHICH I HAVE TO ADD AAUTHORIZATION OBJECT BUT BEFORE THAT I HAVE TO KNOW WHETHER THERE EXISTS AN AUTHORIZATION THAT WOULD SATISFY MY NEED I.E I NEED TO CHECK WHETHER A USER HAVE BEEN AUTHORIZED TO APARTICULAR PLANT.

THANKS

VENKI

In That case you can use transaction SU02 or SU03 to do that.

Regards,

Guru

For the same cae go to the below tran codes and search for your type

SU02

SU03

SU20

SU21

Thanks

Viky

Hi Venki,

Authorization objects will be stored in table <b>TOBJ</b>.

Check whether there is an entry in TOBJ before you proceed to create a new one.

<b>TOBJ-OBJCT</b> is the Authorization Object.

<b>TOBJ-BNAME</b> is the user name.

Thanks,

Vinay

Hi ,

can you be more clear.

How do addd users to authorization object.

thanks

venki

You add authorization objects to role (in tcode pfcg) and then assign those roles to users in transaction su01.

There are few strps to be followed for that.

Hi,

I found the following in one of the forums by RAVI KANTH TALAGANA

I HAVE COUPLE OF QUESTIONS IN HERE

Example

Check whether the user is authorized for a particular plant. In this case, the following authorization object applies:

Table OBJ: Definition of authorization object

M_EINF_WRK

ACTVT

WERKS

Here, M_EINF_WRK is the object name, whilst ACTVT and WERKS are authorization fields. For example, a user with the authorizations

M_EINF_WRK_BERECH1 -

> WHAT DOES THIS REFER(DIFFER

ACTVT 01-03 FROM M_EINF_WRK

WERKS 0001-0003 .

WHAT DOES ACTVT 01-03 AND WERKS 0001-0003 . MEAN

0001 MEANS A PLANT OR WHAT .

HE IS TALKING ABOUT THE USER NAME BUT I DON'T SEE AN Y USERNAME BEING PASSED RIGHT.

can display and change plants within the Purchasing and Materials Management areas.

Such a user would thus pass the checks

AUTHORITY-CHECK OBJECT 'M_EINF_WRK'

ID 'WERKS' FIELD '0002'

ID 'ACTVT' FIELD '02'.

AUTHORITY-CHECK OBJECT 'M_EINF_WRK'

ID 'WERKS' DUMMY

ID 'ACTVT' FIELD '01':

but would fail the check

AUTHORITY-CHECK OBJECT 'M_EINF_WRK'

ID 'WERKS' FIELD '0005'

ID 'ACTVT' FIELD '04'.

To suppress unnecessary authorization checks or to carry out checks before the user has entered all the values, use DUMMY - as in this example. You can confirm the authorization later with another AUTHORITY-CHECK.

WAITING FOR YOUR REPLIES THANKS

Transaction authorization_display_objects......

for a particular user and authorization object combination yuo can go and check in tcode suim.

Hi Venky,

Try following the steps.

1. Create a Custom Z authorization Object in Tcode SU21. Try including it in the appropriate Authorization Class so that it can be assigned later.

Make sure you save the changes in a TR and do make a note of this TR

2. Please include this Object in the piece of Code by ' AUTHORITY CHECK' so that this Object is taken care in the coding and gets checked ...

Please make sure the error handling is also done by making the messages clear like " You are Not authorized to act on this' etc etc ..

3. Creating a single role in PFCG and assign this Tcode to which this Report is assigned and then this Object is included to that Role manually.

The above process can ensure that the Role assigned to any User can perfrom the actions required and rest all would be denied.

Please let me know if this is what u have been looking for.

Br,

Sri

Award points for helpful answers

Hi Venky,

A good doc to check...as well..

http://help.sap.com/saphelp_bw21c/helpdata/en/52/6712ac439b11d1896f0000e8322d00/frameset.htm

Br,

Sri

Award points for helpful answers