Show TOC

Background documentationPFCG Roles for Audit Trail Locate this document in the navigation structure

 

Audit Trail offers two PFCG roles. You are provided with all necessary transactions with the associated authorization objects.

Note Note

To display the necessary authorization objects for a transaction, invoke transaction SU22. Enter the desired transaction on the initial screen and choose Execute. The system then displays a table with the authorization objects for the selected transaction. If you select an authorization object and choose the Display Field Values button, the system displays further details on the authorization object.

End of the note.

The following PFCG roles are offered for the Audit Trail component:

  • SAP_BC_SRV_ASF_AT_USER

    This role contains the minimum authorizations for the evaluation of Audit Trail data:

    • Transaction S_AUT10 enables you to evaluate change documents, table logs, and long text logs.

    • With transaction S_AUT02, you can define a navigation aid by assigning a certain table to a transaction, for example.

    Note Note

    The role SAP_BC_SRV_ASF_AT_USER is also used by all ILM users who directly invoke transaction S_AUT10 in an ILM environment.

    End of the note.

  • SAP_BC_SRV_ASF_AT_ADMIN

    The role of the Audit Trail Administrator supports the following activities:

    • Maintenance of the logging settings for change documents, table logs, and long text logs (transaction S_AUT01)

    • Settings for the deletion of long text logs and the direct deletion of long text logs from the logging table (transactions S_AUT04 and S_AUT05)

    • Evaluation of logged data according to criteria that you can define yourself (S_AUT10)

    • Comparison and adjustment of previous and new logging settings following a system upgrade.