Only the authorization objects assigned to a user will give this user the permission to access the data, regardless if this user can execute the transaction. The reality is however completely different. Most people think that you can protect a SAP system by removing and assigning transaction codes and that the purpose of authorization objects is only to restrict to certain company codes, plants, sales organizations etc. Moreover if you ask the question what the purpose of a transaction code and an authorization object is in regard to SAP security, the answer is usually wrong. We at CSI tools believe that 90% of the security administrators do not know how many transaction codes and authorizations objects exist in a SAP system. Transaction codes vs authorization objects.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |