11-16-2012 4:55 AM
Hi Experts,
Would like get advice from you all. May i know, normally who will create a new authorization object and class? Is it the basis or the abaper? Please advice me on the correct practice. Thanks.
Regards,
Shawn
11-16-2012 5:27 AM
Hi Shawn,
Authorization objects are usually created by BASIS or a S&A ( Security and Authorization )consultant.
Regards,
Umar Syed.
11-16-2012 11:20 AM
Dear Shwan,
The authorization object can be created by the BASIS people even the ABAP Consultant can also create the authorization object.
But you can use a standard authorization object rather than creating a new authorization object.
The same can be searched using tcode su20.
Regards,
Dinesh
11-16-2012 11:41 AM
Hi Shawn,,
Generally Security People will do that and they will give you the Auth Object.
In some cases like Small Enterprises/Companies ABAP people will do that..
Generally BASIS people will assign the Auth Roles to your User ID..
Hope this helps..
11-16-2012 11:47 AM
Hi Shawn,
There are instances that ABAP create a custom Authorization Objects and likewise, BASIS (Security Team) also provided the Auth Object.
Regards,
KR
11-16-2012 12:16 PM
Hi,
You can create authorization objects using SU20. Devoleper's and basis Team can create it.
basis Team will be preferable.
11-17-2012 7:45 AM
Hi,
Depends on how your working environment is structured. If ABAP consultant have authorization for SU20/SU21 and knowledge of it then he/she can create an Authorization object. Else always preferred to be done by a Basis/Security consultant.
At last A Basis/Security consultant adds the Auth. object into roles.
11-17-2012 5:08 PM
Hello
Security used to have access to create an authorisation object and class but it now it requires a developer key (in the systems I used at least) so it's now an ABAP task.
Kind regards
David