Skip to Content
author's profile photo Former Member
Former Member

Authorization groups

Dear Experts,

I created authorization groups, I attached this in

for a program in SE38 attribute,

my question what are the next steps need to perform to

restrict the access to this program using this authorization group.

Thanks in advance.

Best regards,

Keith.

Add comment
10|10000 characters needed characters exceeded

4 Answers

  • author's profile photo Former Member
    Former Member
    Posted on Aug 02, 2006 at 07:36 AM

    u have to call like this

    AUTHORITY-CHECK OBJECT 'Z_UNIT_OFF'

    ID 'ACTVT' FIELD '03'

    ID 'VKGRP' FIELD I_AUTH_VKGRP-VKGRP.

    if sy-subrc ne 0.

    message.

    endif.

    Regards

    prabhu

    Add comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Aug 02, 2006 at 07:43 AM

    The only thing you need to do is assign authorizations to the users who are supposed to change or execute the program. Add authorizations to objects S_PROGRAM and S_DEVELOP.

    The assignment of a program to an authorization group plays a role when the system checks whether the user is authorized to:

    o Execute a program

    > Authorization object S_PROGRAM

    o Edit a program (-Include) in the ABAP Workbench

    > Authorization object S_DEVELOP

    -Kiran

    Please mark useful answers

    Add comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Aug 02, 2006 at 08:32 AM

    Hello fr,

    The authorization group allows extended authorization protection for particular objects. The authorization groups are freely definable. They usually occur in authorization objects together with an activity.

    The table that contains all authorization objects is TOBJ.

    The table that contains all activities is TACT.

    The table that contains definition of all authorization groups is TBRG.

    TBRG -- Contains all authorization groups and gives information about relation between authorization object and authorization group. The description of the authorization groups is defined in table TBRGT.

    Please also refer to foll links

    http://help.sap.com/saphelp_nw04s/helpdata/en/80/1a6859e07211d2acb80000e829fbfe/content.htm

    http://help.sap.com/saphelp_apo/helpdata/en/35/26b17fafab52b9e10000009b38f974/content.htm

    Please reward for the same.

    Add comment
    10|10000 characters needed characters exceeded

  • Posted on Aug 02, 2006 at 08:45 AM
    Add comment
    10|10000 characters needed characters exceeded