2007 Sep 17 8:41 AM
Hi all,
I have created a ZTABLE for which i need to restrict access via SE16 through authorization. This table should be accessd only if the user has been given the authorization attached to a profile.
Need ur inputs on this.
Best regards,
Subba
2007 Sep 17 8:58 AM
put an authorisation group on the table (SE54) e.g. z001. Create a role for the user with SE16 and ensure that the auth group field in S_TABU_DIS only contains z001 (or whatever auth group you create).
You then need to go through all roles with access to SE16 and ensure that the auth group field in S_TABU_DIS does not contain a * value.
2007 Sep 17 9:00 AM
Hi Subba,
Along with this table you might have created an Authorisation group for Table maintenance generator... assume this is ZAUT
So in the Auth object S_TABU_DIS, mention like this:
DICBERCLS = AZUT
ACTVT = 03
And create a new role out of this and assign to those users who wants to view the table "ZTABLE"
Thanks and Regards, Pradeep
2007 Sep 17 9:24 AM
Hi
Do below steps:
1) Run Tcode SUCU
create a new Custom Authorization Group for table Here, Say ZG1
2) Run SM30 and open Table TDDAT
create a new entry here, use the table name say " ZTABLE " and newlely created Authrization group " ZG1 "
Now your table is under group ZG1
3) Run PFCG
Create a new Role give auth of SE16 tcode
in Authorization tab of PFCG go to object S_tabu_dis put the above authorization group ZG1 with ACTVT 03 there.
this will restrict your table to only DISPLAY Authorization
2007 Sep 17 11:54 AM
Hello Pradeep,
THANKS FOR THE REPLY:
I am not clear how to use S_TABU_DIS. Do we need to change the standard object or how to use this S_TABU_DIS.
thanks,
Subba
2007 Sep 18 9:24 AM
Hi Subba,
There is Find Option, Click there and put S_TABU_DIS and then enter.
This will help U.
YAB
2007 Sep 18 9:37 AM
Subba,
S_TABU_DIS is the authorisation object that is used to control access to table data.
If you add transaction SE16 to a role, it will pull through auth object S_TABU_DIS.
To restrict that role from only being able to access the ZTABLE via SE16, you need to populate the authorisation object in the role with the authorisation group you have maintained for the ztable
2007 Sep 19 7:27 AM
Hi,
you already create table (SE11) with table name ZTABLE
in SE11, you go to menu Utilities - Assign Authorization Group
you will get a screen with Table - Authorization - Description
enter your table ZTABLE and authorization let say XXYY.
for user who want to access this ZTABLE will be asked S_TABU_DIS (auth object) with value authorization group XXYY automaticly (will be display in SU53).
hope can help you.
2007 Sep 19 1:07 PM