Assigning and Maintaining Authorization Groups 

General Information

An authorization group is an attribute of a report. If you want to release a report for the Internet, you must maintain an authorization group for this report.

If you do not want to assign the authorization group to an application, it is sufficient to assign a group of your choice to the report (see below) even if that group does not yet exist. Otherwise you must create the authorization group in the TPGP table. Enter the authorization group (the P_GROUP field) and application (the APPLI field) using the Data Browser (transaction SE16). To display or edit the names of possible applications, open the table TAPLP .

To assign an authorization group to a report, open the ABAP Editor. Choose Attributes and enter a value in the Authorization group field. Customers use the report RSCSAUTH to assign authorization groups without modifications (see also: Prerequisites).

When you create or maintain a role, you assign an authorization group to the role using the authorization object S_PROGRAM (the authorization group is a field in this authorization object).

1. You can create new roles or work on existing ones using transaction PFCG.
2. Choose the Authorizations tab.
3. Under Maintain authorization data and generate profiles click the Change authorization data button.



The system asks you to choose a template.

4. Choose the Manually button.
5. The authorization object contains the field Authorization group:ABAP/4 program (the P_GROUP field). You can enter an authorization group for the report and thus assign it to your role.