SM30 and AUTHORITY-CHECK

Similar Messages

• With regard to lock object and authority check

  hi all
  i would like to know about lock object and authority check specifically in reports. there is a coding in sap library with regard to authority check, but there is no coding to restrict user (i mean there is no user names that the object is restricting for a particular user or any user has got permission to change or display object). 
  further, the code mentions that you need an authorization in your user master record for the object, could any of u explain where is user master record.
  below is the code for authority check.
  *&      Module  USER_COMMAND_0100  INPUT
  MODULE USER_COMMAND_0100 INPUT.
    CASE OK_CODE.
      WHEN 'SHOW'.
     AUTHORITY-CHECK OBJECT 'S_CARRID'
  ID 'CARRID' FIELD '*'
  ID 'ACTVT'  FIELD '03'.
     IF SY-SUBRC NE 0. MESSAGE E009. ENDIF.
     MODE = CON_SHOW.
     SELECT SINGLE * FROM  SPFLI
      WHERE  CARRID      = SPFLI-CARRID
      AND    CONNID      = SPFLI-CONNID.
     IF SY-SUBRC NE 0.
  MESSAGE E005 WITH SPFLI-CARRID SPFLI-CONNID.
     ENDIF.
     CLEAR OK_CODE.
     SET SCREEN 200.
      WHEN 'CHNG'.
     AUTHORITY-CHECK OBJECT 'S_CARRID'
  ID 'CARRID' FIELD '*'
  ID 'ACTVT'  FIELD '02'.
     IF SY-SUBRC NE 0. MESSAGE E010. ENDIF.
     MODE = CON_CHANGE.
     SELECT SINGLE * FROM  SPFLI
      WHERE  CARRID      = SPFLI-CARRID
      AND    CONNID      = SPFLI-CONNID.
     IF SY-SUBRC NE 0.
       MESSAGE E005 WITH SPFLI-CARRID SPFLI-CONNID.
     ENDIF.
     OLD_SPFLI = SPFLI.
     CLEAR OK_CODE.
     SET SCREEN 200.
    ENDCASE.
  ENDMODULE.                 " USER_COMMAND_0100  INPUT
  i thank u all for the help in advance.

  hi
  this might help
  REPORT YUSRLOCK NO STANDARD PAGE HEADING.
  TABLES: TRDIR, USR02.
  DATA: MARK,CNTR TYPE I,
        ACCNT LIKE USR02-ACCNT, ERDAT LIKE USR02-ERDAT,
        ANAME LIKE USR02-ANAME, CLI(3) VALUE 'AAA', SZIN TYPE I,
        SYDATUM LIKE SY-DATUM, FLAG(3).
  TABLES: UINFO.
  DATA: OPCODE TYPE X VALUE 2.
  DATA: BEGIN OF USR_TABL OCCURS 10.
          INCLUDE STRUCTURE UINFO.
  DATA: END OF USR_TABL.
  START-OF-SELECTION.
    CALL 'ThUsrInfo' ID 'OPCODE' FIELD OPCODE
      ID 'TAB' FIELD USR_TABL-SYS.
    SELECT * FROM USR02 CLIENT SPECIFIED ORDER BY MANDT BNAME.
      IF USR02-MANDT <> CLI.
        SZIN = SZIN + 1. SZIN = SZIN MOD 2.
        CLI = USR02-MANDT.
      ENDIF.
      IF USR02-UFLAG = 0.
        MARK = ' '.
      ELSE.
        MARK = 'X'.
      ENDIF.
      CLEAR FLAG.
      LOOP AT USR_TABL.
        IF USR_TABL-BNAME = USR02-BNAME AND USR_TABL-MANDT = USR02-MANDT.
          FLAG = '!!!'.
        ENDIF.
      ENDLOOP.
      SYDATUM = SY-DATUM - 30.
      IF SYDATUM < USR02-TRDAT.
        IF SZIN = 0.
          WRITE:/ ' ', MARK AS CHECKBOX,' ', USR02-BNAME COLOR 2,
                ' ',USR02-MANDT COLOR 2,
                '   ',USR02-USTYP COLOR 2,
                ' ',USR02-TRDAT COLOR 2, USR02-LTIME COLOR 2,
                ' ',FLAG COLOR 6.
        ELSE.
          WRITE:/ ' ', MARK AS CHECKBOX,' ', USR02-BNAME COLOR 3,
                ' ',USR02-MANDT COLOR 2,
                '   ',USR02-USTYP COLOR 2,
                ' ',USR02-TRDAT COLOR 2, USR02-LTIME COLOR 2,
                ' ',FLAG COLOR 6.
        ENDIF.
      ELSE.
        IF SZIN = 0.
          WRITE:/ ' ', MARK AS CHECKBOX,' ', USR02-BNAME COLOR 2,
                ' ',USR02-MANDT COLOR 2,
                '   ',USR02-USTYP COLOR 2,
                ' ',USR02-TRDAT COLOR 4, USR02-LTIME COLOR 4,
                ' ',FLAG COLOR 6.
        ELSE.
          WRITE:/ ' ', MARK AS CHECKBOX,' ', USR02-BNAME COLOR 3,
                ' ',USR02-MANDT COLOR 2,
                '   ',USR02-USTYP COLOR 2,
                ' ',USR02-TRDAT COLOR 4, USR02-LTIME COLOR 4,
                ' ',FLAG COLOR 6.
        ENDIF.
      ENDIF.
      HIDE: USR02-BNAME, USR02-MANDT.
    ENDSELECT.
    CLEAR USR02.
  TOP-OF-PAGE.
  WRITE:/ 'LOCK   USER         CLIENT  TYPE     LAST lOGIN     ' COLOR 6.
    SKIP.
  AT USER-COMMAND.
    IF SY-UCOMM = 'SEL'.
      DO.
        CLEAR MARK.
        READ LINE SY-INDEX FIELD VALUE MARK.
        IF SY-SUBRC NE 0.  EXIT. ENDIF.
        IF USR02-BNAME IS INITIAL.CONTINUE.ENDIF.
        SELECT SINGLE * FROM USR02 CLIENT SPECIFIED WHERE
        MANDT = USR02-MANDT AND BNAME = USR02-BNAME.
        IF MARK = 'X' AND USR02-UFLAG = 0.
          USR02-UFLAG = 64.
          UPDATE USR02 CLIENT SPECIFIED SET: UFLAG = 64 WHERE
          MANDT = USR02-MANDT AND
          BNAME = USR02-BNAME.
          COMMIT WORK.
        ENDIF.
        IF MARK = ' ' AND USR02-UFLAG = 64.
          USR02-UFLAG = 0.
          UPDATE USR02 CLIENT SPECIFIED SET: UFLAG = 0 WHERE
          MANDT = USR02-MANDT AND
          BNAME = USR02-BNAME.
          COMMIT WORK.
        ENDIF.
      ENDDO.
      CLEAR USR02.
    ENDIF.
  regards
  Arun

• User role and Authority-check ?

  Hello,
  Could you please let me know how are the differences between User role and Authority-check. In a program I do not use Authority-check , And The user is not assigned to user role which contain this transaction ( for this program), Can the user execute this transaction OR he must be assigned to user role which contain this transaction to execute it . Supposing that we do not use any Authority-check in then program.
  Thanks in advance

  Hello Martin,
  I think this answers the OP's question about user not being assigned the role which contains the trxn code. As you have explained in this case the default auth. check for S_TCODE will fail & user cannot execute the trxv. (If i remember correctly the tables for this are AGR_USERS & AGR_TCODES)
  Anyways just to add to the OP's query. Auth. objects are added to profiles which in turn assigned to roles. So if you implement the auth. object in your program the user must also subscribe to the role containing the auth. obj. profile to be able to execute it.
  @OP:
  The transactions PFCG & SUIM might interest you. Also the tables dealing with these stuffs begin with AGR*. You can check the tables for better understanding.
  BR,
  Suhas

• ALV GRID and AUTHORITY-CHECK

  Hi all !!! 
  I'm using the ALV Grid control with checkboxes and I want to control if the actual user have the appropriate authorization to check/uncheck them.
  In the AUTHORITY-CHECK call, I want to make the authorization test on the "DEPARTMENT" of the user (from Table USER_ADDR or SU01).
  For example :
  DEPARTMENT AA1 --> check/uncheck OK
  DEPARTMENT AA2 --> check/uncheck NOT OK
  DEPARTMENT AA3 --> check/uncheck OK
  ... etc.
  How can I do ? Create an new authorization object/field ?
  PS : it's the first time I'm using AUTHORITY-CHECK..

  Much of the data in an R/3 system has to be protected so that unauthorized users cannot access it. Therefore the appropriate authorization is required before a user can carry out certain actions in the system. When you log on to the R/3 system, the system checks in the user master record to see which transactions you are authorized to use. An authorization check is implemented for every sensitive transaction.
  If you wish to protect a transaction that you have programmed yourself, then you must implement an authorization check. 
  This means you have to allocate an authorization object in the definition of the transaction.
  For example:
  program an AUTHORITY-CHECK.
  AUTHORITY-CHECK OBJECT <authorization object> 
     ID <authority field 1> FIELD <field value 1>. 
     ID <authority field 2> FIELD <field value 2>. 
     ID <authority-field n> FIELD <field value n>. 
  The OBJECT parameter specifies the authorization object.
  The ID parameter specifies an authorization field (in the authorization object).
  The FIELD parameter specifies a value for the authorization field.
  The authorization object and its fields have to be suitable for the transaction. In most cases you will be able to use the existing authorization objects to protect your data. But new developments may require that you define new authorization objects and fields.
  Example ;
  REPORT  EXAMPLE MESSAGE-ID Z1.
  TABLES: USR02.
  PARAMETERS: LOCK AS CHECKBOX, LISTLOCK AS CHECKBOX.
  DATA: UFLAGVAL TYPE I, LOCKSTRING(8) TYPE C.
  ---- Authorization check -
  AUTHORITY-CHECK OBJECT 'ZPROG_RUN' ID 'PROGRAM' FIELD SY-CPROG.
  IF SY-SUBRC <> 0.
    IF SY-SUBRC = 4.
      MESSAGE E000 WITH SY-CPROG. "some message about authorization check failure
    ELSE.
      MESSAGE E005 WITH SY-SUBRC. "some message about authorization check failure
    ENDIF.
  ENDIF.
  IF LISTLOCK = 'X'.
    WRITE:/ 'List all locked users: '.
    SELECT * FROM USR02 WHERE UFLAG = 64.
      WRITE: / USR02-BNAME.
    ENDSELECT.
    EXIT.
  ENDIF.
  IF LOCK = 'X'.
    UFLAGVAL = 64.                       "lock all users
    LOCKSTRING = 'locked'.
  ELSE.
    UFLAGVAL = 0.                        "unlock all users
    LOCKSTRING = 'unlocked'.
  ENDIF.
  SELECT * FROM USR02 WHERE BNAME <> 'SAP*' AND BNAME <> SY-UNAME.
    IF USR02-UFLAG <> 0 AND USR02-UFLAG <> 64.
      WRITE: 'User', USR02-BNAME, 'untouched; please handle manually.'.
      CONTINUE.
    ENDIF.
  check that user has authority to make these changes
    AUTHORITY-CHECK OBJECT 'S_USER_GRP'
        ID 'CLASS' FIELD USR02-CLASS
        ID 'ACTVT' FIELD '05'.
    IF SY-SUBRC <> 0.
      IF SY-SUBRC = 4.
        WRITE: /'You are not authorized to lock/unlock user ',
          USR02-BNAME, USR02-CLASS.
      ELSE.
        WRITE: /'Authorization error checking user ',
               USR02-BNAME, USR02-CLASS, '(return code', SY-SUBRC, ').'.
      ENDIF.
    ELSE.                                "has authority
      UPDATE USR02 SET UFLAG = UFLAGVAL WHERE BNAME = USR02-BNAME.
      WRITE: / 'User', USR02-BNAME, LOCKSTRING, '.'.
    ENDIF.

• HR PNP LDB and authority check

  Hello All,
                Can someone plzz tell me if there is any major difference between CODE1 and CODE2 below? I understand if we use LDB we dont need to do authority check but is there is any exceptional case where we do this kind of codeing...
  CODE1:
  Start-of-selection
  GET pernr.
    CALL FUNCTION 'HR_CHECK_AUTHORITY_INFTY'
          EXPORTING
               tclas            = w_tclas
               pernr            = pernr-pernr
               infty            = '0001'
               subty            = space
               begda            = pn-begda
               endda            = pn-endda
               level            = w_level
          EXCEPTIONS
               no_authorization = 1
               internal_error   = 2
               OTHERS           = 3.
    if not sy-subrc is initial.
      reject.
    endif.
    PERFORM list_data.
  END-OF-SELECTION.
  CODE2:
  Start-of-selection
  GET pernr.
    PERFORM list_data.
  END-OF-SELECTION.
  Thanks in advance...
  -Muktar

  Hi Muktar,
  In my opinion, certain infotypes hold certain level of access by different user who is using that report to view HR information. Particularly sensitive infotype like 0008 (basic pay) and other pay involving infotypes can be use to check for authority before it is display or modify by users. So HR_CHECK_AUTHORITY_INFTY is used.
  Get PERNR does not validate the authority because PERNR itself is just a structure that contains a few PA Keys and several of other infotype structure that doesn't tell the authority to read by any specific users. Get PERNR contains the PROVIDE macro and in it does not do any authorization, if i am not mistaken.
  This is my understanding. I hope my explanation is correct and have help you in a way.
  Thanks
  William Wilstroth

• How to create authority check object and assign to  ztcode which is of modu

  Dear ,
           how to create authority check object and assign to  ztcode which is of custom module pool program.its urgent kindly help points rewarded.

  Manoj,
  You can check with your Basis team to create authorisation object and assigining tcodes to the user profiles.
  K.Kiran.

• Plz tell me how to create authority check objects and how to usein prg

  dear sir,
  plz tell me how to create authority check objects and how to usein prg

  http://help.sap.com/saphelp_46c/helpdata/en/5c/deaa74d3d411d3970a0000e82de14a/content.htm
  http://help.sap.com/saphelp_nw70/helpdata/en/52/6716a6439b11d1896f0000e8322d00/content.ht
  Create custom authorization – Customer specific object
  If you have requirements that cannot be met using the P_ORGIN and P_ORGXX authorization objects (for example, because you want to build your authorization checks on additional fields of the Organizational Assignment infotype (0001) that are customer-specific), you can include an authorization object in the authorization checks yourself.
  Create the authorization object using transaction SU21. Make sure you keep to the customer name range (Z/Y). To be able to use the new authorization object you have created in the master data authorization check, the object must contain the INFTY, SUBTY, and AUTHC fields. You can use any of the fields of the Organizational Assignment infotype (0001) for the other fields. You can also use customer-specific additional fields provided they are CHAR or NUMC type fields.
  After you have created the object, you must start the RPUACG00 report. This report overwrites the MPPAUTZZ standard include with the code that is needed to evaluate the authorization object you created. Note: Technically speaking, this involves a modification. However, SAP fully supports this procedure. And you should not have more maintenance work as a result of this modification.
            Note: that if you use customer-specific authorization objects, you must maintain these objects in transaction SU24 (Maintain Assignment of Authorization Objects to Transactions) in the same way as you maintain the authorization objects P_ORGIN, P_ORGXX, and P_PERNR
  AUTHORITY CHECK OBJECT Object_name
              ID fieldname1 FIELD fieldvalue1
              ID fieldname2 FIELD fieldvalue2
              ID fieldname3 FIELD fieldvalue3.
               If sy-subrc eq 0.   "Authorization exists
               Endif.
  http://articles.techrepublic.com.com/5100-6329_11-5110893.html
  Edited by: JackandJay on Jan 16, 2008 10:21 AM

• How to debug a authority check in program and a authorisation object in tco

  Can anyone tell me how to debug a authority check in program and a authorisation object in tcode
  i just want to know the flow of authorisation object in debugging how user is assocaited with authorisation object and roles.
  i know if sy-subrc ne 0 is authorisation failed ,so please help me anyone on this.
  every time when i put breakpoint ,if its program level only, i am able to decide only through sy-subrc but iam unable o view the flow .

  flow cannot be seen, we have to be based on sy-subrc only...
  you cannot see the flow in read table... describe table... transfer...
  the authorization object will be assigned to the data element, that data element has some realtion to the roles given to the users. So if the role of the user and data element value doesnt match the sy-subrc NE 0.

• Company code authority check

  Hi
  we have created ZTTL01 table maintenance view. Should not allow unauthorized company code to update/create or display.
  I searched thru forums and collected below points. but could not test it successfully.
  Authorization object (Z_XXX_BUK) was created.But <Permitted activities> Button is not available in display authorization object(SU21) to see what are the activities are permitted.
  In su01 for my user no roles or profiles are defined.
  To do
  Trying to write  below code in PBO and PAI flow logic of ZCHECK_BUK table for screen 01
  PBO & PAI
  *First statement
  Module Authorictycheck.
  module Authoritycheck
    LOOP AT EXTRACT.
      AUTHORITY-CHECK OBJECT 'ZCHECK_BUK'
                          ID 'ACTVT' FIELD '01,02,03'
                          ID 'BUKRS' FIELD ZTTL01-BUKRS.
      IF sy-subrc <> 0.
        MESSAGE e000(zrpt) WITH 'You do not have the authorization to'
      EXIT.                          'access Bukrs'extract-bukrs.
      ENDIF.
    ENDLOOP.
  endmodule
  Can i use above code in PBO and PAI to check change of company code?
  I am sharing role and profile created by other user, which allows only company code 'A10'.
  How to test this now?
  se11->Utilities->table contents create should not allow me to input A11 or other company codes? pls confirm.
  Regards
  Chandra

  Hi Suhas
  Regarding 1) It works when i remove the FORM routine assinged for EVENTS.
  Thanks for ur input.
  Regarding 2)When the user displays record in SM30 for a table, he must not be able to see the company code AD01.
  To achieve this can i use EVENT AA?
  I create FORM routine <hide_cocode> in EVENT AA and store at include LZXXXXF01.
  FORM ZHIDE_COCODE.
  DATA: F_INDEX LIKE SY-TABIX."Index to note the lines found"
  LOOP AT TOTAL.
  READ TABLE EXTRACT WITH KEY <vim_xtotal_key>.
  IF SY-SUBRC EQ 0.
  F_INDEX = SY-TABIX.
  ELSE.
  CLEAR F_INDEX.
  ENDIF. "(make desired changes to the line TOTAL)
  MODIFY TOTAL.
  CHECK F_INDEX GT 0.
  EXTRACT = TOTAL.
  MODIFY EXTRACT INDEX F_INDEX.
  *ENDIF.
  ENDLOOP.
  SY-SUBRC = 0.
  ENDFORM.
  I made break point at line LOOP at Total. and executed SM30 and clicked Display button.
  Sorry Code stops here and table TOTAL has flat line structure of empty.Loop at total is skipping
  what should be done now?
  Regards
  Chandra

• Regarding Authority check objects

  Hi All,
  I have some confusion on Authority-check and its working.
  AUTHORITY-CHECK OBJECT 'S_TABU_DIS'
    ID 'ACTVT'     FIELD '03'
    ID 'DICBERCLS' FIELD tddat-cclass.
  In the above code, 'DICBERCLS' FIELD tddat-cclass... these values will take and compare with tddat table list.
  but my question is how it will check the   ID 'ACTVT'     FIELD '03' ??How it will check for the ACTVT is '03'.
  It will take it from any table?
  Thanks in advance,
  Madhu

  Hi,
  You are coding as follows:-
  AUTHORITY-CHECK OBJECT 'S_TABU_DIS'
  ID 'ACTVT' FIELD '03'
  ID 'DICBERCLS' FIELD tddat-cclass
  This authorisation object is for Table Maintenance (via standard tools such as SM30).
  Now when the code is executed, SAP will check that whether the current user has an Authorization Group as the value in TDDAT-CLASS in the user role and the activity is 03 or display.
  If in the user role, the basis guys have given the Authorization Group(DICBERCLS) value as XYZ and the value in  tddat-cclass is also 'XYZ' and the value of ACTVT field in the user role is '03', SAP will allow the user only to display the table via SM30.
  If the authorisation group is different or if the ACTVT is different, the user will not be allowed for this authority check.
  I hope this is clear for you.
  Regards,
  Ankur Parab

• Question on Search Help and Authorization Check for Sales Order Type

  Question 1:
  When I go to VA01 and click the search help, it shows only order type that are not blocked.
  However, when I have sales order type in select-options of a Z program,
  S_AUART FOR VBAK-AUART
  I click on the search help, it gives all the sales order types. How can I have a list with unblocked sales order type only?
  Question 2:
  I want to check whether a use can extract data from a sales order type (e.g. OR and RE)that he/she authorized to use.
  I have include the following in my program:
  AUTHORITY-CHECK OBJECT 'AUART'
  ID 'AUART' FIELD 'OR'.
  It always returns SY-SUBRC = 12.
  But order type 'OR' is granted to the user (he/she can create order with type OR in VA01)
  Please kindly give me some ideas, thanks.

  hi,
  ad1
  use following code:
  AT SELECTION-SCREEN ON VALUE-REQUEST FOR auart.
    PERFORM auartGet.
  FORM auartGet.
      CALL FUNCTION 'RV_HELP'
           EXPORTING
                KEY            = VKORG
                KEY2           = VTWEG
                KEY3           = SPART
                KEY4           = '0'
                NUMBER         = '008'
                FIELD_IN       = AUART
           IMPORTING
                FIELD          = AUART.
  ENDFORM.
  ad2.
  example:
     AUTHORITY-CHECK OBJECT 'V_VBAK_AAT'
           ID 'AUART' FIELD 'OR'
           ID 'ACTVT' FIELD '01'. "01-create order, 02-change, 03 display
  check sy-subrc eq 0.
  regards,darek

• Is there a way of showing more info than just the title and author for books in my iPad "library", say date downloaded, or date last read, eg ?

  Sometimes I forget the title of a book I am currently reading, and have to check through each book in my long list of titles in my "library" to find it again. I cant see any way of adding any additional information to each title (and author), like date downloaded, or date last read, which would help me find a particular book again quickly. 
  I may be missing something simple, so can anyone please help?
  Thanks in advance.

  Sometimes I forget the title of a book I am currently reading, and have to check through each book in my long list of titles in my "library" to find it again. I cant see any way of adding any additional information to each title (and author), like date downloaded, or date last read, which would help me find a particular book again quickly. 
  I may be missing something simple, so can anyone please help?
  Thanks in advance.

• I have purchased a new computer and authorized my iTunes with my Apple ID; however, my iPod Classic, which I have had for many years, will not sync hundreds of songs that I have purchased and says the device needs to be authorized.  Help!

  I have purchased a new computer and authorized my iTunes with my Apple ID; however, my iPod Classic, which I have had for many years, will not sync hundreds of songs that I have purchased and says the device needs to be authorized. 
  I have searched high and low and there does not seem to be a way to authorize the iPod Classic.  What can I do to sync my purchases to my iPod?  I have tried reformatting/restoring it as suggested.  It continues to only allow me to sync non-icloud/itunes content. 
  Help!

  What exactly happens when you try to sync?
  Was the iPod previous synced to another iTunes library/computer?
  Have you successfully synced from this iTunes library/computer before?
  If so have you done anything like update iTunes on the computer since it last successfully synced?
  Do the songs play in iTunes?          
  Does any media now sync to the iPod?
  Do you have the right boxes checked to sync?
  iTunes: Syncing media content to iOS devices and iPod       
  Try syncing using the manual method                
  Managing content manually on iPhone, iPad, and iPod

• I downloaded iTunes to a new computer and authorized that computer but my music is grayed out and will not play, how do I get access to my music?

  I installed iTunes to a new computer and authorized that computer but my music is grayed out.  How do I get access to my music?

  Is there a way to change that?
  You can easily set up the iPod to automatically sync to your current iTunes library (or just do a Restore), but that will replace the iPod's existing content with content from your current iTunes library (erasing the iPod).  If your old computer was "retired" gracefully and you were able to transfer its complete iTunes user data to your new computer, there is no problem because all of the songs on the iPod now are already in your current iTunes library.  However, if there are songs on the iPod that are not in your current iTunes library, those songs will be lost.  That may be a problem...
  If you want to preserve what is on the iPod, you can try setting the iPod to Manually manage music and videos.  I believe you can do that from an iTunes library that is not the iPod's currently associated library.  Select the iPod in iTunes, so that you see its Summary settings screen.  Check the box for Manually manage music and videos.  (If iTunes puts up any warning about erasing or replacing the iPod's existing content, Revert the change and cancel out.)  Click Apply.  The iPod is no longer set to automatically sync.  But you can add new content manually to what is already on the iPod.  And the songs should not be grayed out. 
  However, you cannot use iTunes to transfer songs on the iPod to your current iTunes library (except for songs purchased from the iTunes Store).  If there are songs on the iPod that are not in your computer's iTunes library, you should eventually "offload" those song files because your iPod can easily break, become corrupted, or get lost.  iTunes syncs content in one direction only (from computer to iPod), but there are third-party methods and utilities that can transfer from iPod to computer.  If you do an Internet search on something like iPod "transfer," you should get some links, including a CNET article on the topic.
  Once all of your songs are "consolidated" in your current iTunes library, you can set up the iPod for automatic syncing to that library.

• Authority check at field level in sales order

  Dear all, our business requirement is the following:
  only some users should be able to see the prices (including netwr, netpr,...) in the sales order depending on the authority check performed on the sales group field.
  This means that for an order of sales group 'A':
  a user of sales group 'A' can see the prices and change the order, a user of sales group 'B' cannnot see the prices but can change the order, a user of sales group 'C' can display the order but cannnot see the prices.
  I ask you if such a scenario can be realized in SAP.
  We currently run SAP ECC 5.0.
  thx all !
  bye Roberto

  Hi agree with Jan and Auke,
  To my knowledge it is object V_KONH_VKO which you are looking for. See the documentation in SU24 - SD class.
  But whether or not that will influence the visibility / editability of the screen in VA02 etc when turned the check on in SU24, I am not sure.
  If not, search the forum for topics relating to "transaction variants", "variant transactions" and "screen variants" to see whether those solutions will fulfill the requirement.
  Cheers,
  Julius