2007 Feb 08 12:01 PM
2007 Feb 08 12:14 PM
Hi Prasanth
All authorization objects stores in TPGP table.
First create a entry in the TPGP table ( for ex. zv30_320 is a entry) .
Go to se 38 -> ur report -> menu -> goto -> attributes -> authorization group -> give that created entry ( zv30_320 here).
Thus we can create the authorization objects.
2 way:
using company code activity and object id programatically we can create the authorization object.
Which method u required plz let me know.
So that i can come in detailed.
reward me points if it is useful.
Regards,
kumar
2007 Feb 08 12:14 PM
Hi Prasanth
All authorization objects stores in TPGP table.
First create a entry in the TPGP table ( for ex. zv30_320 is a entry) .
Go to se 38 -> ur report -> menu -> goto -> attributes -> authorization group -> give that created entry ( zv30_320 here).
Thus we can create the authorization objects.
2 way:
using company code activity and object id programatically we can create the authorization object.
Which method u required plz let me know.
So that i can come in detailed.
reward me points if it is useful.
Regards,
kumar
2007 Feb 08 12:37 PM
hi
here i am generalizing my question more. i need to give authorization group while creating a table maintenance for that i need to create an authorization group.
2007 Feb 09 7:18 AM
Hi
You can use
<b> &NC& (Without Authorization group)</b>
for creating Table mainataianence as well.
Hope this will help.
Please reward suitable points.
Regards
- Atul
2007 Feb 08 12:18 PM
Hi
Do you want to create a new authorization for the table maintainence generator ?
<b>Use the standard transaction SU20 and SU21</b> for more details.
Hope this will help.
Please reward suitable points.
Regards
- Atul
2007 Feb 08 12:40 PM
hi
SU20 and SU21 are useful for creating FIELD and Object authorizations. i need to create authorization Group for DB Maintenance
regards
2007 Feb 09 7:29 AM
2007 Feb 09 7:30 AM
Hi,
<b>Authorisation objects</b> are used to restrict certain transactions to users.Critical data must be protected from unauthorised users.For example,the head has access to certain data.But it cannot be accessed by his subordinate.For this we need to define roles.
Create an authorization object with transaction SU21.
An object usually consists of the ACTVT (activity) field and one other field,which specifies the data type to be protected.By ACTVT, we can decide if the data is accessible for change,display only etc.
Add authorization fields to the authorization object created.
Assign the authorization object to the transaction using SE93.
Attach the authorization object to the role using transaction PFCG.
If you want to <b>assign roles</b>,use transaction PFCG.Create a new role.In the AUTHORIZATIONS tab,you can get a self generated profile name and a profile text by clicking on the icon next to it.Then go to the "Change Authorization data" and choose an authorization template.Then you can choose to display/change/create an activity and after the selection,click on the red and white circle.The profile will now be created.
In the user tab,you can give the user details who can use this role.
Also check this link:
http://www.sapsecurityonline.com/r3_security/r3_security_tips.htm
http://help.sap.com/saphelp_nw04s/helpdata/en/52/6716a6439b11d1896f0000e8322d00/content.htm
<b>Very helpful guide:
https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c</b>
Regards,
Beejal
**Reward if answer is helpful
2007 Feb 09 8:02 AM
Hi Prasanth,
The Authorization group can be created as follows
Transaction SE54 >Select 'Authorization Groups'>Create/Change-->New Entries.
Now the authorization group created can be assigned to your table.
Let me know in case of any doubts.
Please reward helpul answers.
Regards,
Sowmya