Académique Documents
Professionnel Documents
Culture Documents
SU53 - In my experience, I can definitely say that this is one of the very
important and useful transaction for any person working on SAP system.
When you run a transaction in SAP, you might see a message as 'You Are
Not Authorized' or 'No Authoration' etc, next step you would need to do is
go to transaction SU53 where is shows the name of the authorization object
which has failed. If you are eligible you can just request for that authorization
object to be added to your profile.
Not just with custom transactions, sap standard transactions also use the
same concept, and this method helps you to identify the necessary
authorization objects which needs to be added to your profile to get access to
that transaction.
Another important point is, even if there is no Error Message on the screen if
you feel that some thing is weird, as soon as you run the transaction you can
check SU53 if any authorization object is failed. Like, there is SAP standard
transaction which should show a button to DELETE a row, now we can restrict
the visibility of that button using Authorzation-Object concept. In this case,
program will not show any error message, the output is that the user will not
be seeing that button. So if you feel that some buttons or some thing is
missing when you access a particular transaction, check SU53 immediately to
see as what is the issue.
Below screen shot shows a sneak peak of SU53. In that screen shot,
S_USER_PRO is the authorization object for which the check has failed.
This SU53 can be used even to check authorization issues of other users
using the Other Object button(3rd from left) on the screen shot above.
Process of steps is, go to transaction ST01 and check the Authorization Check
check box and click on Trace On button(As Shown below).
We do have an option to restirct the trace by User, Program or Transaction
using the General Filters button. If there are no filters, this transaction runs
wide open for all the users and transactions in that system.
After activating the trace, perform your process steps then come back to
ST01 and click on Trace Off Button and then click on the Analysis button to
display the trace. Output of the trace looks like the screen show shown
below,
In the above screen shot you can usee that, S_DEVELOP check was successful
with RC(Return Code) as 0 and S_PB_PAGE has failed with return code 12, so
to get access to that transaction, S_PB_PAGE needs to be added to that user's
profile.
I will try to post another blog about Authorization Objects and sap transaction
code SUIM but this is it for now :). Hope this helps you to solve some of the
critical issues on your system :).