Demystify Authorization Error Analysis in Transaction SU53

  • by Anurag Barua, Independent SAP Advisor
  • June 15, 2008
Analyze access considerations for your users and transaction SU53. Examine its capabilities as compared to other transactions and how auditors perceive it when they are looking at your organization’s system.
Key Concept

SAP security administrators use transaction SU53 to troubleshoot. Regular users of any SAP system use it to access information about an authorization failure. It has been available since the earliest SAP release.

Authorization error analysis is an important troubleshooting component within an enterprise’s SAP security framework. It is not unusual for users of an SAP system to execute business processes to which they do not have access rights. If your enterprise has implemented a role-based security model, this situation may have arisen because the business process that the user was trying to execute was not within the scope of his role. He may have run into a segregation of duties (SoD) conflict.

Transaction SU53 facilitates authorization error analysis. Despite its widespread use, confusion abounds regarding its exact nature, capabilities, and audit-related implications. I have also found that there is not enough documentation in this area and that insights are generally gleaned from encountering problems and issues. I will look at this transaction from various angles, including how administrators and auditors deal with it, in an effort to demystify its purpose and proper usage. I’ll also provide some recommendations and helpful SAP Notes.

Anurag Barua

Anurag Barua is an independent SAP advisor. He has 23 years of experience in conceiving, designing, managing, and implementing complex software solutions, including more than 17 years of experience with SAP applications. He has been associated with several SAP implementations in various capacities. His core SAP competencies include FI and Controlling FI/CO, logistics, SAP BW, SAP BusinessObjects, Enterprise Performance Management, SAP Solution Manager, Governance, Risk, and Compliance (GRC), and project management. He is a frequent speaker at SAPinsider conferences and contributes to several publications. He holds a BS in computer science and an MBA in finance. He is a PMI-certified PMP, a Certified Scrum Master (CSM), and is ITIL V3F certified.

See more by this author


No comments have been submitted on this article. 

Please log in to post a comment.

To learn more about subscription access to premium content, click here.