Solution : https://service.sap.com/sap/support/notes/1481950 (SAP Service marketplace login required)
Summary :
In SAP environments, users might encounter anomalies while assigning tables to authorization groups, affecting table access via standard or proxy transactions. Issues include non-useful assignment of tables to the group ‘&NC’ and challenges assigning meaningful authorizations due to expansive group sizes or the 4-character limitation of custom-defined groups. SAP proposes implementing updates using correction instructions in the note, focusing on the new authorization object S_TABU_NAM alongside S_TABU_DIS for refined authority checks affecting table-specific validations. This facilitates a detailed access structure while maintaining legacy system configurations. Reference to notes 1500054 and 1434284 provides further optimization guidelines.
Key words :
software component sap_basis sap basis compo, change access activities similar, enhanced authorization default values, finely granulated authorization concept, previous table access concept, assigning s_tabu_dis authorizations completely, coded authorization checks directly, table authorization group &nc&, central function module view_authority_check, s_tabu_dis authorization checks defined
Related Notes :
| 1557803 | Correction of role SAP_BC_SEC_IDM_COMMUNICATION |
| 1557277 | SQVI/SQ01: No authorization check on S_TABU_NAM |
| 1550915 | SPPFCADM: Authorization default values |
| 1541577 | Impact of S_TABU_NAM in Risk Analysis and Remediation |
| 1522661 | Enhancement of the function module VIEW_AUTHORITY_CHECK |
| 1516880 | Authorization check for generic table access (S_TABU_NAM) |
| 1507256 | Default authorization group assignment of BW tables |
| 1503975 | Optimization of authorization default values |
| 1500054 | Additional tools for S_TABU_NAM authorization concept |
| 1434284 | FAQ| Authorization concept for generic table access |