In the Business Analyst role in an SAP shop, it may be helpful to know what Roles or Users have access to a particular transaction code. Here’s a little tip that lets you do all sorts of queries about the authorizations in your SAP system.
Use T-code: AUTH to Access “Infosystem Authorizations” Menu
To get started, enter AUTH into the command bar in SAP and then hit ‘ENTER’ or the Green check ball. The menu will change to the “Infosystem Authorizations” menu, which contains various t-codes for viewing the authorizations in the system.
There are numerous options to view authorizations by: User, Roles, Profiles, Authorizations, Authorization Objects, Transactions, etc.
I recently wanted to see the Users and Roles that had access to FI12. I used:
- Users / Users by Complex Selection Criteria / By Transaction Authorizations
- Roles / By Transaction Assignment
- Roles / By Authorization Object
When you’re working on security or trying to figure out who can get something done for you in Production, this is indespensible!
Cheers,
Byron
Does AUTH work on HP0 too?
Hi Chuck,
I believe that it should work on an HR instance of R/3 or ECC. An HR instance is really just another instance of SAP that is dedicated to (and walled off for) HR functions.
You do raise a good point. There may be organizational rules around who has access to AUTH.
Check with your security guys to see if you can get it. It’s quite handy for people in a Business Analyst role.
Cheers,
Byron
Thanks a lot, Byron!
From what I can see, it’s essentially a recap of SUIM, just more structured and legible. Can be useful at times.
Welcome! I’ll have to check out SUIM.
Cheers!
Byron
You are right Seriusz , I have always been using SUIM to get to the exactly same set of Tcodes but still its good to know Tcodes to individual options.