i haven taken training on sap basis... right now i m looking
for job .what we are doing in trace (st01)explain in detailed.
Answers were Sorted based on User's Feedback
Hi ,
this is Subal from Accenture.
ST01 is mainly used to trace user's authorization access.
When we can not make out [by use of SU53]what is missing
for a particular user that he can not access certain things.
We use ST01 to trace the user's action and thereby find out
missing authorizations.
Steps:St01
check authorization check
click on general filter and give user whose trace you want
click on Trace On
save the setting.
---------------------------
Now ask the user to perform the task he was doing --and
complained for missing access.
after his complation
----------------------
Come to st01 again
click on trace off [this is very important to turn it off]
click on analysis button -->give the from date&time and to
date&time accurately.
execute
you will get detailed description of users action with
missing auth [that come with rc >0]
------------------------
note those auth obj and field for which user had issue.
find role and assign the user to give needed access.
--------------------------------
I think this is detailed enough.....
Regards,
SUBAL
Is This Answer Correct ? | 17 Yes | 0 No |
Hi,
I partially agree with Subal, need to follow below 2 points
before performing all the steps mentioned above by Subal.
- First we need to check in which application server user
has logged in.
- Using SM51 tcode, you need to login same application
server where user logs in.
- Then perform trace activity
Is This Answer Correct ? | 10 Yes | 0 No |
What is a Role in Sap Security and Types of Roles and use of the role?
what is difference between se16 and sm31?
What is the use of usergroup in logon data tab?
Can you explain protecting public keys?
What are the different types of sap security tables?
Is it possible to have more than one st of org-level values in one role? Explain your answer.
can we assign roles to user without user master comparison
I have a custom tables, for which I created auth group, which contains another 2 tables. Now I have assigned this table to user, but still he cannot access the table. What's the reason? User buffer is fine and not exceeded.
What are se10 t-codes used for?
how to create new authorization object?
11.If the user don't have the access of su53?then how to fine the user missing authorization with out using st01?
what are the common idoc issues in a cua environment.how do you solve?