We are configuring SAP Read Access Log on EHP8 (SAP_BASIS 7500 SP 001).

In the configuration path it's possible tracking logs based on transaction codes or a programs.

However it's not always easy find out all programs and transactions allowed to perform a certain kind of action over a specific table/field (instead of specify a program or transactions).

To be more clear, it's possibile specify the traking of logs over a specific table/field or it's only possibile track logs once you know program/transactions/function module etc you want to track? So it's essential perform at first a check/investigation identifing all transaction or programs change sensitive data in your organization then configure the RAL in order to be sure to include all programs that change sensitive data.

Post https://archive.sap.com/documents/docs/DOC-44006 contain some information but is not updated.

Many thanks.

Massimo