Skip to Content
author's profile photo Former Member
Former Member

Granting access to SA38

I've created a role for transaction SA38 to give users.

When the users try accessing the trx they were getting a Program termination due to Authorization.

Upon running the SU53,I adjusted another role which was called in the Authorization check.

The users ran the program again and once again a Program termination occured.

This time the SU53 read

Object S_DATASET -Authorization for File Access

Object Class BC_A -Basis Administration

Activity 33

Physical file name (file path)

ABAP Program name (This is the name of the program the user is trying to run using SA38)

Can anyone advise where i can start checking for this activity 33? The authorization check did not call a Role.

Also note the role i created for the TRX SA38 ,i didn't specify an Authorization group under Basis- Development Environment (for the role).How do i do this?

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

2 Answers

  • author's profile photo Former Member
    Former Member
    Posted on Dec 04, 2007 at 11:42 PM

    Hi Adeel,

    Simply go to PFCG and edit the rol.

    Add the authorization object SU53 tells you (S_DATASET?). Here you are going to set the activity 33.

    SAP is asking you to specify what ABAP program the users are going to be able to run. If you dont want to specify names, but just to give access to whatever program just write * . (all programs).

    I suggest you to create a user for testing and assignate the rol to this user so you can verify it for yourself before giving it to the users 😊

    Good luck,

    Add a comment
    10|10000 characters needed characters exceeded

    • Former Member

      ^^Thanks i did everything before (with the users)but i couldn't see where i needed to add that activity 33.When i went back to PFCG I clicked the Open tab AND was able to add the activity 33 manually.Somehow the Authorisation for file access needed to be entered manually.

      I'm going to transport now (cross my fingers.).

  • author's profile photo Former Member
    Former Member
    Posted on Dec 05, 2007 at 06:36 AM

    Take a look at the documentation on function module AUTHORITY_CHECK_DATASET. You should check the authority of the user <b>before</b> you perform the DATASET commands (with resultuing dump if no authority).

    The intended solution to the authorization problem, would be to create a transaction for the program, and maintain transaction SU24 to pull in S_DATASET with the name of the program, the activity and the file name as required when you add that transaction to a role menu.

    Kind regards,

    Julius

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.