Thursday, June 13, 2013

Sensitive Authorization Objects

Similar to my last post for Sensitive T-codes in SAP, any authorization object with certain fields value and
activity turns to be sensitive authorization object.

I have list out some of them below :
 1. S_DEVELOP ABAP Workbench
    ACTVT Activity
      With ANY of these values:
      02 Change
    OBJNAME Object name
      With ANY of these values:
      DEBUG DEBUG

 2. S_TCODE Transaction Code Check at Transaction Start
    TCD Activity
      With ANY of these values:
      "*" ( Treat * as a literal ) *

3.  S_DEVELOP ABAP Workbench
    ACTVT Activity
      With ANY of these values:
      06 Delete
      07 Activate, generate
    OBJNAME Object name
      With ANY of these values:
      * ( Treat * as a wildcard ) *

4.  S_TABU_CLI Cross-client Table Maintenance
    CLIIDMAINT Indicator for cross-client maintenance
      With ANY of these values:
      X X

5.  S_PROGRAM ABAP: Program run checks
    P_ACTION User action ABAP/4 program
      With ANY of these values:
      BTCSUBMIT BTCSUBMIT
      EDIT EDIT
    P_GROUP Authorization group ABAP/4 program
      With ANY of these values:
      "*" ( Treat * as a literal ) *

6.  S_TABU_DIS Table Maintenance (via standard tools such as SM30)
    ACTVT Activity
      With ANY of these values:
      02 Change
    DICBERCLS Authorization group
      With ANY of these values:
      * ( Treat * as a wildcard ) *

7.  S_USER_AGR Authorizations: Role check
    ACTVT Activity
      With ANY of these values:
      01 01
      02 Change

8.  S_USER_AGR Authorizations: Role check
    ACTVT Activity
      With ANY of these values:
      22 Enter, Include, Assign

9.  S_USER_AUT User Master Maintenance: Authorizations
    ACTVT Activity
      With ANY of these values:
      01 01
      02 Change

10.  S_USER_AUT User Master Maintenance: Authorizations
    ACTVT Activity
      With ANY of these values:
      07 Activate, generate
      22 Enter, Include, Assign

11.  S_USER_PRO User Master Maintenance: Authorization Profile
    ACTVT Activity
      With ANY of these values:
      01 01
      02 Change

12.  S_USER_PRO User Master Maintenance: Authorization Profile
    ACTVT Activity
      With ANY of these values:
      06 Delete
      22 Enter, Include, Assign

13.  S_USER_SYS User Master Maintenance: System for Central User Maintenance
    ACTVT Activity
      With ANY of these values:
      59 Distribute
      78 Assign

14.  S_TRANSPRT Transport Organizer
    ACTVT Activity
      With ANY of these values:
      01 01
      02 Change

15.  S_TRANSPRT Transport Organizer
    ACTVT Activity
      With ANY of these values:
      43 Release

16.  S_TRANSPRT Transport Organizer
    ACTVT Activity
      With ANY of these values:
      60 Import

17.  S_RZL_ADM CCMS: System Administration
    ACTVT Activity
      With ANY of these values:
      01 Create

18.  S_BTCH_NAM Background Processing: Background User Name
    BTCUNAME Background user name for authorization check
      With ANY of these values:
   
"*" ( Treat * as a literal ) *
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)