Hi Sankar,

Ask Basis team to create roll for your ZREPORT program TCODE.(authorization group)

And check the table entries in the agr_users table with roll name (AGR_NAME), user id (UNAME).

Check the sy-subrc. If through the 0. access the tcode. Else display the error message.

Thanks & Regards,

Suresh M

If all you are trying to control is the ability to run the report or not, then the simplest way is to assign a transaction code to the report (using transaction SE93) and give access to that tcode to the users that should have it. Assuming users generally don't have access to run all ABAPs with SE38 or SA38 (they shouldn't) then this should work fine and doesn't require any changes to the report itself.

If you need finer control, over what data the report should allow access to, then you'll need to add authority-check statements in the report using appropriate authorisation objects. Whether standard SAP objects are appropriate or you need to create new ones is a discussion you'll need to have with your functional and security teams.

Steve.

One way is, when you will assign the transaction to the z report ask the basis person to set the authorisations of that transactio to the desired users.

The other way is to check the desired users in your report using the system field sy-uname,.

The first way is what we use normally.

Hi Sankar,

Please follow the below step.

1) create Authorization Object using Tcode SU21.

2) call FM

CALL FUNCTION 'AUTHORITY_CHECK' in Zreport.

Regards,

Ashwath.

Hi Sankar,

Please follow the below step.

1) create Authorization Object using Tcode SU21.

2) call FM

CALL FUNCTION 'AUTHORITY_CHECK' in Zreport.

Regards,

Ashwath.

Hi Sankar,

Go to SU21 and search the correct authorization object.

Use the code like this.

AUTHORITY-CHECK OBJECT 'F_BKPF_BUK'

    ID 'BUKRS' FIELD '1000'

    ID 'ACTVT' FIELD '01'.

you can also do looping instead of hard coding the company code values.

Thanks!