This article shows how to set up access control for reports.
To grant access to a report, an authorization group must be assigned to the report.
Access to the report can then be granted through the S_PROGRAM authorization object, see SAP Note 338177.
Authorizing Access to Specific Reports #
- Log into SAP and use transaction code SE38 to open the ABAP Editor.
- Enter the name of the report you want to access and select Attributes as the Subobjects.
- Click [Change]. A window that contains the program attributes opens.
- Assign an authorization group.
- Edit or create a user role you want to grant access to (transaction code PFCG).
- Manually assign the authorization object S_PROGRAM to the user role.
- Select the action SUBMIT in the S_PROGRAM object field P_ACTION.
- Assign the same authorization group that is assigned to the report to the S_PROGRAM object field P_GROUP.
- Save and generate the authorization.
- Assign the user role to users.