Quickly Update A Report’s Authorization Group by Using Program RSCSAUTH
- by Brad Walters, Sr. Consultant
- Dawn Burns, QA Manager, Howrey LLP
- April 15, 2007
Find out how to use program RSCSAUTH effectively to ensure data privacy.
By using program RSCSAUTH (maintain/restore authorization groups), you can easily manage your users’ access to execute programs within your SAP system and avoid a flaw in data privacy protection.
SAP uses authorization groups to determine which users have access to SAP reports and programs as well as their access level. The SAP program RSCSAUTH allows a user to update the authorization group associated with SAP R/3 and mySAP ERP Central Component (ECC) or customer-defined reports or programs. Many people are not familiar with authorization groups or even how the program RSCSAUTH works.
We will discuss how authorization groups work and also show how to perform mass updates. For example, when a user tries to access an SAP program through one of the various reporting tools, be it the SAP reporting tree, the area menu, ABAP program execution (transaction SA38), or Object Navigator (transaction SE80), the system performs an authorization user group check to determine if the user is authorized to execute the report.
The same logic applies when technical team members want to edit a user-defined program via Object Editor (transaction SE38) or Object Navigator (transaction SE80). The system performs a check to see if the authorization group is permitted to perform this function. If a user’s authorization group is not permitted to execute the report or edit the program, then the user is not permitted to perform this process.
Would you like to see this full item?