Register

Forgot Password

Site FAQ

Home > IT Answers > SAP > SAP Authorisations

PinkyV

0 pts.

SAP Authorisations

Basis, SAP, Security

If Authorization object S_tcode has a particular transaction code then does that mean the user can only start this particular transaction or can he execute it to the fullest. e.g.If s_tcode has va01 then can he create and do everything possible with this transaction code ,or does it depend on any other objects. If a particular transaction code depends on other objects, how is it possible to check if he has full authorization for that transaction code. I mean do i have to compare the users available objects with their values with the required objects and their values that we get from the tables USOBX and USOBt. Is there any other method to find to check if a user can fully EXECUTE(not only start) the transaction

Software/Hardware used:

ASKED: February 24, 2005 5:04 AM

UPDATED: February 25, 2005 6:15 AM

RELATED QUESTIONS

Answer Wiki:

The s_tcode object controls whether or not you can *start* the transaction. What you can do within any given transaction is typically controlled by by other authorisation objects. To take your example, having VA01 in an s_tcode authorisation means you can start VA01. There are separate authorisation objects that control which sales areas and document types you can use, and many others. It is perfectly possible to have access to VA01 via an s_tcode authorisation but be unable to actually post anything. To see what other objects are relevant for a given transaction, use SU24.

Last Wiki Answer Submitted: February 24, 2005 5:22 am by Xxxxxx81

0 pts.

All Answer Wiki Contributors: Xxxxxx81

0 pts.

To see all answers submitted to the Answer Wiki: View Answer History.

RSS - Discussions Help

Discuss This Question:

_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

POSTED: Feb 24, 2005 5:44 AM (GMT)

You have to check the Authorizations Object !

If you create a new role, add the TCode VA01, then check the Authorizations Object (STCode in an Authorization Object which contains all the TCode of the specific role)automatically add by the system. If you give all the Authorizations in these Authorizations Objects, it will run correctly.

Send me private message if you want more informations.

Best regards.

Alonsod

0 pts.

POSTED: Feb 25, 2005 6:15 AM (GMT)

You have to assign the Start Code under S_TCODE, but you have to maintain the internal authorisation objects also. You can find other authorisation object authorisation required for a transaction with the help of SU22 or SU24 transaction.

Dharmeshd

0 pts.

Ask a Question

Browse IT Answers by Topic

>>VIEW ALL TAGS

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.
All Rights Reserved, Copyright 1999-2013, TechTarget | Read our Privacy Policy
Questions and Answers Index 1 | Questions and Answers Index 2 | IT Topics Index 1 | IT Topics Index 2 | Blogs Index | Blogs Tags