Skip to Content
avatar image
Former Member

Structural Authorization in HR Standard Reports

Hi Experts,

Structural authorization applied works as intended in standard transactions (e.g. PA20, PA30, PP01 etc.) but it does not work in standard report (e.g. Date Monitoring). User able to extract information for employee that he/she does not authorised to.

Is this normal Structural Authorization behaviour ? Is there anything that need to be done to enable the restriction as intended ? Appreciate your help to look into this matter and advise the way forward.

Best Regards.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Best Answer
    avatar image
    Former Member
    Jul 05, 2012 at 01:49 PM

    Hi,

    Are the standard reports executed, are a part of logical databases like SAPDBPNP, SAPDBPAP etc? You can reach out to technical team to get an answer for that. If yes, then ensure you are not having P_ABAP auth object with COARS = 2, REPID = * or the Program being executed.

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Jul 04, 2012 at 08:06 AM

    Hi,

    I believe you should have the standard report debugged to see if there any authority check for P_ORGINCON. Since you say the report output is not being restricted by structural authorizations, so I suspect the the report has not been coded to check of the aforesaid authorization object. You can also run backend trace in ST01 to see if P_ORGINCON is being checked at all.

    To enforce check on the object, you might want to explore the feasibility of implementing a BADI like HRPAD00AUTH_CHECK with the help of your developer.

    Thanks

    Sandipan

    Add comment
    10|10000 characters needed characters exceeded