05-04-2007 5:50 AM
I create a cusomized Z-table and a view for it, all the table maintain genenator was done and ok, so there is diolog program SAPLZ* and screen generated for maintain the entries in Z-table, since we need a t-code with authorization object included, so i tried to create a t-code with this dialog program and the screen and put authorization object, but it got problem when it test it no matter i delete the authoirzation object.
What is the problem?!
Thanks
05-04-2007 5:53 AM
I
Once you geenrate the table maintenance for that Z table
use the tcode SM30 to add/change the entries in that table.
If you wants to create a new Tcode you can create using the Transaction SE93
for authorization object see the doc;
In general different users will be given different authorizations based on their role in the orgn.
We create ROLES and assign the Authorization and TCODES for that role, so only that user can have access to those T Codes.
USe SUIM and SU21 T codes for this.
Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction.
If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check.
This means you have to allocate an authorization object in the definition of the transaction.
For example:
program an AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT <authorization object>
ID <authority field 1> FIELD <field value 1>.
ID <authority field 2> FIELD <field value 2>.
...
ID <authority-field n> FIELD <field value n>.
The OBJECT parameter specifies the authorization object.
The ID parameter specifies an authorization field (in the authorization object).
The FIELD parameter specifies a value for the authorization field.
The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields.
http://help.sap.com/saphelp_nw04s/helpdata/en/52/67167f439b11d1896f0000e8322d00/content.htm
To ensure that a user has the appropriate authorizations when he or she performs an action, users are subject to authorization checks.
Authorization : An authorization enables you to perform a particular activity in the SAP System, based on a set of authorization object field values.
You program the authorization check using the ABAP statement AUTHORITY-CHECK.
AUTHORITY-CHECK OBJECT 'S_TRVL_BKS'
ID 'ACTVT' FIELD '02'
ID 'CUSTTYPE' FIELD 'B'.
IF SY-SUBRC <> 0.
MESSAGE E...
ENDIF.
'S_TRVL_BKS' is a auth. object
ID 'ACTVT' FIELD '02' in place 2 you can put 1,2, 3 for change create or display.
The AUTHORITY-CHECK checks whether a user has the appropriate authorization to execute a particular activity.
This Authorization concept is somewhat linked with BASIS people.
As a developer you may not have access to access to SU21 Transaction where you have to define, authorizations, Objects and for nthat object you assign fields and values. Another Tcode is PFCG where you can assign these authrization objects and TCodes for a profile and that profile in turn attached to a particular user.
Take the help of the basis Guy and create and use.
Reward points if useful
Regards
Anji
05-04-2007 6:32 AM
Thanks Anji,
But I just want to put all in the Z t-code, the problem is: at this moment, in the Z t-code, I only put the program name (table maintain generator program) and the screen number, and ticked GUI support, but I still get shortdump error when testing the Z t-cde.
I don't know why?!
05-04-2007 6:43 AM
u have to create Parameter Tcode , not a normal Tcode in case of TMG.
in parameter Tcode u have pass there data.
1.First tick Transaction = SM30.
2.tick option = skip first screen.
3.tick all GUI options
4.
<b>VIEWNAME ZZHR_DOBJE--->ur Table name
UPDATE X </b>
Regards
Prabhu
05-04-2007 6:44 AM
You should create a Parameter transaction.
In proposed values, put SM30 and tick "skip initial screen".
Then at the bottom, complete the parameters:
VIEWNAME | put table name
SHOW | put X
Hope it helps
However, i think you should use integrated Maintenance view security instead of a separate Z transaction.
05-04-2007 6:49 AM
Yes, I have done all you mentioned. So, do you mean i have to make ABAP code to make any authorization check?!
Thanks
05-07-2007 7:46 AM
Sorry for delay. I meant entering Authorization group in SE55 transaction, where you define the maintenance view. I think from there you set the security over the maintenance view so you don't need any additional coding. But someone more experienced about this should confirm or clarify.
Regards
05-08-2007 4:26 AM
Thanks,
But what I want to put in is <b>Authorization Object</b> NOT Authorization Group?
Any idea?!
05-08-2007 5:29 AM
05-19-2008 10:23 AM
i need to create t.code for table maintance...
in that t.code creation we should not use SM30 .
since the user doesnot have access to SM30.
pls help me out..
03-04-2021 6:52 AM
Create a new Z-Parametertransaction.
Filling following fields:
Transaction: SM30
Skip Selection Screen: true
In the parameter table:
VIEWNAME: ZYOUR_VIEW_NAME
UPDATE: X
Assign this transaction to your needed PFCG role.