Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Showing results for 
Search instead for 
Did you mean: 

Restrict access to Particular ZTABLE via SE16...

vsubbakrishna
Participant
0 Kudos
712

Hi all,

I have created a ZTABLE for which i need to restrict access via SE16 through authorization. This table should be accessd only if the user has been given the authorization attached to a profile.

Need ur inputs on this.

Best regards,

Subba

8 REPLIES 8

Former Member
0 Kudos
175

put an authorisation group on the table (SE54) e.g. z001. Create a role for the user with SE16 and ensure that the auth group field in S_TABU_DIS only contains z001 (or whatever auth group you create).

You then need to go through all roles with access to SE16 and ensure that the auth group field in S_TABU_DIS does not contain a * value.

pradeepmathewch
Employee
Employee
0 Kudos
175

Hi Subba,

Along with this table you might have created an Authorisation group for Table maintenance generator... assume this is ZAUT

So in the Auth object S_TABU_DIS, mention like this:

DICBERCLS = AZUT

ACTVT = 03

And create a new role out of this and assign to those users who wants to view the table "ZTABLE"

Thanks and Regards, Pradeep

Former Member
0 Kudos
175

Hi

Do below steps:

1) Run Tcode SUCU

create a new Custom Authorization Group for table Here, Say ZG1

2) Run SM30 and open Table TDDAT

create a new entry here, use the table name say " ZTABLE " and newlely created Authrization group " ZG1 "

Now your table is under group ZG1

3) Run PFCG

Create a new Role give auth of SE16 tcode

in Authorization tab of PFCG go to object S_tabu_dis put the above authorization group ZG1 with ACTVT 03 there.

this will restrict your table to only DISPLAY Authorization

0 Kudos
175

Hello Pradeep,

THANKS FOR THE REPLY:

I am not clear how to use S_TABU_DIS. Do we need to change the standard object or how to use this S_TABU_DIS.

thanks,

Subba

0 Kudos
175

Hi Subba,

There is Find Option, Click there and put S_TABU_DIS and then enter.

This will help U.

YAB

0 Kudos
175

Subba,

S_TABU_DIS is the authorisation object that is used to control access to table data.

If you add transaction SE16 to a role, it will pull through auth object S_TABU_DIS.

To restrict that role from only being able to access the ZTABLE via SE16, you need to populate the authorisation object in the role with the authorisation group you have maintained for the ztable

0 Kudos
175

Hi,

you already create table (SE11) with table name ZTABLE

in SE11, you go to menu Utilities - Assign Authorization Group

you will get a screen with Table - Authorization - Description

enter your table ZTABLE and authorization let say XXYY.

for user who want to access this ZTABLE will be asked S_TABU_DIS (auth object) with value authorization group XXYY automaticly (will be display in SU53).

hope can help you.

vsubbakrishna
Participant
0 Kudos
175

Points assigned to all....good replies....

Problem solved.

Subba