SAP Authorizations Sustainably protect your data treasures with the right authorization management - SAP Basis

Direkt zum Seiteninhalt
Sustainably protect your data treasures with the right authorization management
Generic access to tables
On the other hand one can call the system trace over the transaction ST01. Here it is possible to set individual filters for the checks. In addition, you can switch off the trade via the "Trace off" button or the F8 key and switch the trace back on via the "Trace on" button that is then displayed or the F7 key. If you click on the button "Evaluation" or the F2 key, you can display the evaluation.

The handling of organisational levels in PFCG roles wants to be learned. If these are maintained manually, problems arise when deriving rolls. We will show you how to correct the fields in question. Manually maintained organisational levels (orgons) in PFCG roles cannot be maintained via the Origen button. These organisational levels prevent the inheritance concept from being implemented correctly. You can see that organisational levels have been maintained manually when you enter values via the Ormits button, but the changes are not applied to the authorization object.
Read the old state and match with the new data
When the FIORI interface is called up, different roles (Fiori groups) are associated with factually related FIORI tiles. As an example, here is the group Master Data in which the FIORI tile "Manage Cost Center" can be found.

You can also find some useful tips from practice on the subject of SAP authorizations on the page www.sap-corner.de.

If the proliferation has occurred because the authorization concept was not adhered to, a cleanup is sufficient. If the proliferation has arisen because there are errors and gaps in the authorization concept, these errors must be identified, eliminated and the authorizations optimized. If the concept can no longer be implemented in a meaningful way, or if it has already been set up incorrectly, it will be necessary to create a new one.

The possibility of assigning authorizations during the go-live can be additionally secured by using "Shortcut for SAP systems".

However, there are cases where generic access to tables via the SE16, SE16N, SM30, SM31 or SM34 transaction is required for administrators, key users, verifiers, etc.

To store all the information on the subject of SAP - and others - in a knowledge database, Scribble Papers is suitable.

You can also filter multiple entries.
SAP BASIS
Zurück zum Seiteninhalt