Authorizations for External
Commands
Use
To create or change external commands, you require appropriate authorization.
Procedure
Define the authorizations for executing external commands in the SAP system and assign them to users through authorization profiles. Authorizations can be given for all external commands, for groups of external commands, or for individual commands. They can also be restricted to specific computers.
The system does not differentiate between capital and lowercase letters in authorizations.
Table: Purpose of SAP Authorizations
SAP Authorization |
Purpose |
|
S_RZL_ADM with activity ‘01’ |
Maintenance of external commands The authorization should be queried in the ABAP program with the function module 'SXPG_MAINTENANCE_PERMISSION', instead of with AUTHORITY_CHECK. |
|
S_LOG_COM |
Execution of external commands has three fields: |
|
|
COMMAND |
Name of the external command |
|
OPSYSTEM |
Operating systems for which the command was defined (does not have to be identical to the operating system of the target computer) |
|
HOST |
Symbolic computer name of the target system |
|
The fields COMMAND and OPSYSTEM are used to uniquely identify the external command, while HOST defines the authorizations for executing commands on certain target computers. |
|
The authorization S_LOGCOM_ALL, which enables the execution of all external commands, is delivered as standard in the profiles S_A.SYSTEM and S_A.ADMIN.
See also: