Authorisation Object: for database table

Similar Messages

• Is there any command/query/etc, which would allow to understand what database objects (for example tables) are consuming memory and how much of it?

  TimesTen Release 11.2.1.9.6 (64 bit Linux/x86_64)
  Command> dssize;
  PERM_ALLOCATED_SIZE:      51200000
    PERM_IN_USE_SIZE: 45996153
  PERM_IN_USE_HIGH_WATER:   50033464
  TEMP_ALLOCATED_SIZE:      2457600
  TEMP_IN_USE_SIZE:         19680
  TEMP_IN_USE_HIGH_WATER:   26760
  Is there any command/query/etc, which would allow to understand what database objects (for example tables) are consuming memory and how much of it?
  tried to use ttsize function, but it gives some senseless results – for example, for the biggest table, tokens, it produces following output (that this table is 90GB in size – what physically cannot be true):
  Command> call ttsize('tokens',null,null);
  < 90885669274.0000 >
  1 row found.

  Are you able to use the command line version of ttSize instead? This splits out how much space is being used by indexes (in the Temp section of the TT memory segment), which I think is being combined into one, whole figure in the procedure version of ttSize you're using. For example:
  ttSize -tbl ia my_ttdb
  Rows = 4
  Total in-line row bytes = 17524
  Total = 17524
  Command> create index i1 on ia(a);
  ttSize -tbl ia my_ttdb;
  Rows = 4
  Total in-line row bytes = 17524
  Indexes:
  Range index JSPALMER.I1 adds 5618 bytes
    Total index bytes = 5618
  Total = 23142
  Command> call ttsize ('ia',,);
  < 23142.0000000000 >
  1 row found.
  In 11.2.2 we added the procedure ttComputeTabSizes which populates system tables with detailed table size data, and was designed to be an alternative to ttSize. Unfortunately it still doesn't calculate index usage though, and it isn't in 11.2.1.

• SEQUENCE Object for Small Tables Only?

  QUOTE from a recent thread: "Long term solution should be to use SEQUENCE with NO CACHE for small tables instead of identity and benefit from performance improvement for large tables."
  Thread:
  http://social.msdn.microsoft.com/Forums/sqlserver/en-US/cf63d145-7084-4371-bde0-eb3b917c7163/identity-big-jump-100010000-a-feature?forum=transactsql
  How about using SEQUENCE objects for large tables? Thanks.
  Kalman Toth Database & OLAP Architect
  SQL Server 2014 Design & Programming
  New Book / Kindle: Exam 70-461 Bootcamp: Querying Microsoft SQL Server 2012

  Well Erland, either you calm down your manager (with a martini?) or use NO CACHE.
  QUOTE: "This could cause a sequence to run out of numbers much more quickly than an IDENTITY value. It could also cause managers to become upset that values are missing, in which case they’ll need to simply get over it and accept that
  there will be numbers missing.
  If you need SQL Server to use every possible value, configure a cache setting of NO CACHE. This will cause the sequence to work much like the IDENTITY property. However, it will impact the sequence performance due to the additional metadata writes."
  LINK: Microsoft SQL Server: The Sequencing Solution
  Kalman Toth Database & OLAP Architect
  SQL Server 2014 Design & Programming
  New Book / Kindle: Exam 70-461 Bootcamp: Querying Microsoft SQL Server 2012

• Authorisation object for Case Management

  Hi Gurus.
  I need to create authorisation object for Case Management,
  SCMG_T_CASE_ATTR-CATEGORY Field,SCMG_CATEGORY element,
  I use the tx SU21 and Su20, asigned this object to Role. But no WORK.
  In the Su20:
  Field Name: ZCATEGORY
  Data elelment: SCMG_CATEGORY.
  Table Name: SCMGATTR_CATEGO.
  In the SU21:
  Object: ZCASE
  Class: AAAB
  Field Name:
  ACTVT
  ZCATEGORY
  When I use tx SCASE, The condition not work.
  I use the field name ZCATEGORY because the field name CATEGORY was used by SAP. But for USC_Y_CONT_CATEGORY element
  Edited by: Alfredo on Aug 1, 2008 5:39 PM

  Hi Alfredo,
  Go to SU24 tcode and see if the transaction SCASE is being check/maintaned to the authorization object ZCASE.
  If not then you need to do that so that when you add the tcode SCASE to a role then you will see the authorzation object ZCASE which you have created. You can edit the role and change the authorizations for the field, ZCATEGORY and maintain.
  Generate the role and then assign it to the user. I think it must work.
  If it doesnot work then as Alex said, you need to go and look where the Authority check statement is  placed in the program behind the SCASE tcode.
  Hope this helps.
  Regards,
  Kiran Kandepalli.

• To get Lock object for Standard Table

  Hi all,
  i want to update table FKK_GPSHAD,so i need corresponding lock object for this table.can any one sughgest me the solution for this.
  Thanks in advance,...

  Hi,
  Lock objects are use in SAP to avoid the inconsistancy at the time of data is being insert/change into database.
  SAP Provide three type of Lock objects.
  Read Lock(Shared Locked)
  protects read access to an object. The read lock allows other transactions read access but not write access to
  the locked area of the table
  Write Lock(exclusive lock)
  protects write access to an object. The write lock allows other transactions neither read nor write access to
  the locked area of the table.
  Enhanced write lock (exclusive lock without cumulating)
  works like a write lock except that the enhanced write lock also protects from further accesses from the
  same transaction.
  You can create a lock on a object of SAP thorugh transaction SE11 and enter any meaningful name start with EZ Example EZTEST_LOCK.
  Use: you can see in almost all transaction when you are open an object in Change mode SAP could not allow to any other user to open the same object in change mode.
  Example: in HR when we are enter a personal number in master data maintainance screen SAP can't allow to any other user to use same personal number for changes.
  Technicaly:
  When you create a lock object System automatically creat two function module.
  1. ENQUEUE_<Lockobject name>. to insert the object in a queue.
  2. DEQUEUE_<Lockobject name>. To remove the object is being queued through above FM.
  You have to use these function module in your program.
  check this link for example.
  http://help.sap.com/saphelp_nw04s/helpdata/en/cf/21eea5446011d189700000e8322d00/content.htm
  tables:vbak.
  call function 'ENQUEUE_EZLOCK3'
  exporting
  mode_vbak = 'E'
  mandt = sy-mandt
  vbeln = vbak-vbeln
  X_VBELN = ' '
  _SCOPE = '2'
  _WAIT = ' '
  _COLLECT = ' '
  EXCEPTIONS
  FOREIGN_LOCK = 1
  SYSTEM_FAILURE = 2
  OTHERS = 3
  if sy-subrc 0.
  MESSAGE ID SY-MSGID TYPE SY-MSGTY NUMBER SY-MSGNO
  WITH SY-MSGV1 SY-MSGV2 SY-MSGV3 SY-MSGV4.
  endif.
  Normally ABAPers will create the Lock objects, because we know when to lock and how to lock and where to lock the Object then after completing our updations we unlock the Objects in the Tables
  http://help.sap.com/saphelp_nw04s/helpdata/en/cf/21eea5446011d189700000e8322d00/content.htm
  purpose: If multiple user try to access a database object, inconsistency may occer. To avoid that inconsistency and to let multiple user give the accessibility of the database objects the locking mechanism is used.
  Steps: first we create a loc object in se11 . Suppose for a table mara. It will create two functional module.:
  1. enque_lockobject
  1. deque_lockobject
  before updating any table first we lock the table by calling enque_lockobject fm and then after updating we release the lock by deque_lockobject.
  http://help.sap.com/saphelp_nw04/helpdata/en/cf/21eea5446011d189700000e8322d00/content.htm
  GO TO SE11
  Select the radio button "Lock object"..
  Give the name starts with EZ or EY..
  Example: EYTEST
  Press Create button..
  Give the short description..
  Example: Lock object for table ZTABLE..
  In the tables tab..Give the table name..
  Example: ZTABLE
  Save and generate..
  Your lock object is now created..You can see the LOCK MODULES..
  In the menu ..GOTO -> LOCK MODULES..There you can see the ENQUEUE and DEQUEUE function
  Lock objects:
  http://www.sap-img.com/abap/type-and-uses-of-lock-objects-in-sap.htm
  http://help.sap.com/saphelp_nw04s/helpdata/en/cf/21eea5446011d189700000e8322d00/content.htm
  Match Code Objects:
  http://help.sap.com/saphelp_nw2004s/helpdata/en/41/f6b237fec48c67e10000009b38f8cf/content.htm
  http://searchsap.techtarget.com/tip/0,289483,sid21_gci553386,00.html
  See this link:
  http://www.sap-img.com/abap/type-and-uses-of-lock-objects-in-sap.htm
  Check these links -
  lock objects
  Lock Objects
  Lock Objects
  Please reward points if useful.
  Regards
  Rose

• Authorisation object for "PO text in the material master"

  Hi,
  My requirement is as below:
  "All users can see the Purchase Order Text as usual, but only a few users should be allowed to create / change the PO Long Text.
  For other users, the same should appear in display mode only (both in creation & in change mode, MM01 & MM02)."
  Please let me know, How to map this.
  As per my knowledge thsi is possible only thru authorisation. But I want to know what is the authorisation object for "PO text in the material master" (Pl note that only for PO text in the material master field). we want control on "PO text of material master"
  Regards.
  Chinna

  Hi,
  The authorisation object is "M_MATE_MAT", pl check
  Regards
  Merwyn

• Authorisation Object for Payment Block Filed(ZLSPR) in FB02

  Hi,
  I want to restrict the authorisation to modify the field Payment Block to some of the users only in FB02 Tcode.
  How can i achieve it.
  My basis team said it can help me if i can give the authorisation Object  for the same they can restrict the authorisation object to limited users.
  regards
  Jaya

  Hi Mallikarjun,
  The authorisation Object given is related to Excise invoice ? So, please let me know how this would help in restricting modification of payment block filed in FB02?
  regards
  jaya

• How to create authorisation object for save button please help in abap

  how to create authorisation object for save button please help in abap

  Hi
  In general different users will be given different authorizations based on their role in the orgn.
  We create ROLES and assign the Authorization and TCODES for that role, so only that user can have access to those T Codes.
  USe SUIM and SU21 T codes for this.
  Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction.
  If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check.
  This means you have to allocate an authorization object in the definition of the transaction.
  For example:
  program an AUTHORITY-CHECK.
  AUTHORITY-CHECK OBJECT <authorization object>
  ID <authority field 1> FIELD <field value 1>.
  ID <authority field 2> FIELD <field value 2>.
  ID <authority-field n> FIELD <field value n>.
  The OBJECT parameter specifies the authorization object.
  The ID parameter specifies an authorization field (in the authorization object).
  The FIELD parameter specifies a value for the authorization field.
  The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields.
  http://help.sap.com/saphelp_nw04s/helpdata/en/52/67167f439b11d1896f0000e8322d00/content.htm
  To ensure that a user has the appropriate authorizations when he or she performs an action, users are subject to authorization checks.
  Authorization : An authorization enables you to perform a particular activity in the SAP System, based on a set of authorization object field values.
  You program the authorization check using the ABAP statement AUTHORITY-CHECK.
  AUTHORITY-CHECK OBJECT 'S_TRVL_BKS'
  ID 'ACTVT' FIELD '02'
  ID 'CUSTTYPE' FIELD 'B'.
  IF SY-SUBRC <> 0.
  MESSAGE E...
  ENDIF.
  'S_TRVL_BKS' is a auth. object
  ID 'ACTVT' FIELD '02' in place 2 you can put 1,2, 3 for change create or display.
  The AUTHORITY-CHECK checks whether a user has the appropriate authorization to execute a particular activity.
  This Authorization concept is somewhat linked with BASIS people.
  As a developer you may not have access to access to SU21 Transaction where you have to define, authorizations, Objects and for nthat object you assign fields and values. Another Tcode is PFCG where you can assign these authrization objects and TCodes for a  profile and that profile in turn attached to a particular user.
  Take the help of the basis Guy and create and use.
  Regards
  ANJI

• DI object for OACT table

  Hi,
  Does anyone know what is the DI object for OACT table, if I wanted to set "Relevant to Budget" flag on a G/L account through DI?
  If there is an object for OACT, how would I have found it in SDK help? I think I've asked this question before, but if I know the db table, how do I search for the DI object for it? I find the cross-reference between the two very inadequate in the SDK help, unless I'm just missing something really obvious?

  Maybe by the Services
  Search Services in the SDK and the second entry is DI Services

• Authorisation object for cost center

  Hi all,
       I need to know the authorisation object for the field COST CENTER in ME21N(creation of PO) screen. How to find it? Since I am creating roles for users with help of BASIS I need to know it. I need to restrict the values for the cost center field while creating the purchase order.
  Thanks in advance.
  Regards,
  Raj

  Hello,
  Master Data:
  CO: Cost center master      (K_CSKS)
  CO: Cost center groups      (K_CSKS_SET)
  CO: Cost element master      (K_CSKB)
  CO: Cost element groups      (K_CSKA_SET)
  CO: Activity type master      (K_CSLA)
  CO: Activity type groups      (K_CSLA_SET)
  CO: Statistical key figures      (K_KA03)
  CO: Stat. key figure groups      (K_KA03_SET)
  Planning:
  CO: Version      (K_KA09_KVS)
  CO: Planner profiles      (K_TKA50)
  CO: Cost center planning      (K_CSKS_PLA)
  CO: Cost element planning      (K_CSKB_PLA)
  CO: Budgeting      (K_CSKS_BUD)
  Regards
  Mahesh Naik

• Authorisation object for controlling te changes to "Delivery completed indi

  hi
  I want to know the authorisation object for controlling te changes to "Delivery completed indicator" in PO.
  I want to give the authorisation to change to certain users only.
  Best regards
  Sar

  There is no authorization at field level.
  Either the user has authorization to change an order or not.

• Authorisation object for field level

  Hi all,
  In support desk ,Is there any authorisation object for controlling field level changes such as category or priority by message processors.
  Balamurugan

  Hi.
  Not that I know of. I was also looking for something like this and could not find anything.
  I think there is even no logging if someone makes any changes to those fields.

• Temporary data carriers for Database tables

  hi Gurus,
  How can we find temporary Data Carriers for database tables. For eg.   when we craete a BOM in CS01/CS02 the data first goes to RC29P structure and when system finishes it goes to STPO.
  This is one example. how canw e find other structures and theirs corresponding Database Tables?
  Any idea?
  Regards

  Hi Greg,
  Those are the aggregated tables. If they are not filled with data although the Portal Activity Report is activated, you should check whether the aggregation finished successfully.
  In the older SPs there were some problems that were fixed in later SPs of 7.0.
  In order to have the latest version of Portal Activity report, you can check SAP note 1084379 - Portal Activity Report - Latest Version (SDA file).
  You can compare the SP via the MANIFAST file, as it contains the version and SP number.
  In order to troubleshoot problems in Activity Report, you can follow SAP note: 1690023 - Portal Activity Report - Component-specific Note
  Some basic checks that you can do:
  Run query on the raw data tables to check since when there is data in those tables:
  select min(timestamphour) from SAP<SystemID>DB.WCR_WEBCNODESTAT;
  If there is too much data from long time ago, then you should delete the old data, and leave only the new data (there is anyways retention time for the data to be kept).
  If there is no data, then it means that the Portal Activity Report does not collect data, and not really activated (usually this is not the case).
  The aggregation runs every top of the hour, so you can check in the default traces for an error during that time.
  In most of the cases something went wrong while aggregating the data.
  As a result the aggregation is not finished, so the transaction is not being committed, and the aggregated tables stay empty.
  If there is a DuplicateKeyException in the trace, you can follow SAP note 1054145 - Duplicate Key Exception.
  If you have any more questions, please don't hesitate to ask.
  I hope this information helps,
  Thanks & regards,
  Michal Zilcha-Lang

• How  to create  authorisation object for  report

  hi
  experts..
  hw  can u  create authorisation object for  the  custom report.
  Thanks&  Regards
  Spandana

  Hi,
  In general different users will be given different authorizations based on their role in the orgn.
  We create ROLES and assign the Authorization and TCODES for that role, so only that user can have access to those T Codes.
  USe SUIM and SU21 T codes for this.
  Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction.
  If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check.
  This means you have to allocate an authorization object in the definition of the transaction.
  For example:
  program an AUTHORITY-CHECK.
  AUTHORITY-CHECK OBJECT <authorization object>
  ID <authority field 1> FIELD <field value 1>.
  ID <authority field 2> FIELD <field value 2>.
  ID <authority-field n> FIELD <field value n>.
  The OBJECT parameter specifies the authorization object.
  The ID parameter specifies an authorization field (in the authorization object).
  The FIELD parameter specifies a value for the authorization field.
  The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields.
  http://help.sap.com/saphelp_nw04s/helpdata/en/52/67167f439b11d1896f0000e8322d00/content.htm
  To ensure that a user has the appropriate authorizations when he or she performs an action, users are subject to authorization checks.
  Authorization : An authorization enables you to perform a particular activity in the SAP System, based on a set of authorization object field values.
  You program the authorization check using the ABAP statement AUTHORITY-CHECK.
  AUTHORITY-CHECK OBJECT 'S_TRVL_BKS'
  ID 'ACTVT' FIELD '02'
  ID 'CUSTTYPE' FIELD 'B'.
  IF SY-SUBRC <> 0.
  MESSAGE E...
  ENDIF.
  'S_TRVL_BKS' is a auth. object
  ID 'ACTVT' FIELD '02' in place 2 you can put 1,2, 3 for change create or display.
  The AUTHORITY-CHECK checks whether a user has the appropriate authorization to execute a particular activity.
  This Authorization concept is somewhat linked with BASIS people.
  As a developer you may not have access to access to SU21 Transaction where you have to define, authorizations, Objects and for nthat object you assign fields and values. Another Tcode is PFCG where you can assign these authrization objects and TCodes for a  profile and that profile in turn attached to a particular user.
  Take the help of the basis Guy and create and use.
  Sy-SUBRC values
  4              User has no authorization in the SAP System for
                 such an action. If necessary, change the user
                 master record.
  8              Too many parameters (fields, values). Maximum
                 allowed is 10.
  12             Specified object not maintained in the user
                 master record.
  16             No profile entered in the user master record.
  24             The field names of the check call do not match
                 those of an authorization. Either the
                 authorization or the call is incorrect.
  28             Incorrect structure for user master record.
  32             Incorrect structure for user master record.
  36             Incorrect structure for user master record.
  http://www.sap.ittoolbox.com/groups/technical-functional/sap-basis/please-how-to-create-an-authorization-object-386391 - 78k -
  http://www.sap-abaprogram.blogspot.com/2007/11/what-is-use-of-
  authorization-checks-to.html - 75k -
  www.sapworld.hpg.ig.com.br/download/ab4query.pdf
  with thanks,
  Abaper.

• Navigation for database tables in a transaction code

  Hi all !
     Is there any way to know the database tables linked to a transaction code, so that searching for fields in tables gets easier right?Please help.
  What is the use of Tcode SE80.How can we make use of this transaction?

  hi,
  SE80 - Object Navigator
  se80 is a tool to develope and navigate programs and dd-obj.
  SE80 Object Navigator - > means all the objects qill be available there.
  in se80 in addition to viewing the objects related to programming and classess, there are more priviliges to view such as some other repositories suchas mime, object repository,object browser and all..
  The 2 editors are se38 and se80 both have the abap editor in place. In se38 you can go create programs and view online reports and basically do all thedevelopmet of objects in this editor. In se80 ( object navigator) there are additional features such as creating packages,module pool , function group ,classes, programs ( where you can create ur programs) and BSP applications .
  SE38, u will get more space in editor when u compare with the SE80 screen, the tree structure available will occupy more space so it will be eay for us to code.
  If u want to do any special navigation then u can got to SE80, but there is no specific reason.
  It depends on teh users convineince.
  se80 is to navigate to every object .....
  but everytime there is no need to navigate to several steps and go to abap editor.
  So there certain transactions which takes us to directly to the objects such as SE38 for abapaeditor
  SE37 for function module
  SE93 for creating transaction codes...etc.
  U can also traverse to se80 from SE38 itself using CtrlShiftF5.
  SE 38 ->Abap Editor thru which we can create/modify the programs.
  SE80 ->Object Navigator thru which we can navigate to many areas like message classes,Function modules,application areas,transactions, programs etc.