Answer / vasu.g

Hi Gaurav,

when ever the T-Code is assigned/added to role
it is going to pullout the authorization objects which are
maintained as Yes in SU24.

for your query if you set the value of the object from "No"
to "yes" then the object will be pulledout and you can
maintain the values in PFCG, when you add this T-Code to
any Role.

if you change the value of the object from "Yes" to "No"
the authorization objects will not be pulledout.

Hope This is da Answer you was Expecting!!!!

Answer / sreedhar

su24 displays the value of usobx_c and usobt_c of the tables. And whenever you change to yes to the particular object that will appear in the authorization maintainence screen and if no you will not be able to see the particular object in the authorization object.

Answer / asia

Question itself is wrong, proposal can be set to yes or no,
check indicator's value can be X, Y or N.

Answer / bvdb

When a user starts a transaction code, the AS will start to
process the ABAP code associated with it. If the AS finds
an AUTHORITY-CHECK statement in the source code, it will
check table USOBX_C to see if the function AUTHORITY-CHECK
has to be peformed or not.
If the check indicator is set on "Check", AUTHORITY-CHECK
will be performed.
If the check indicator is set on "Do Not Check", AUTHORITY-
CHECK will not be performed and return code RC = 0 (check
passed) will be logged.

Answer / madhu k

Changing Check indicator NO to YES --- NO IMPACT

Changing Check indicator YES to NO --- IMPACT

Answer / gaurav s

Thanks Ruchika, the above quoted answer is in scope of my
knowledge. But i am looking for the technical process which
skips the auth-check for an object which is marked Yes from
No in Auth Check column in su24.

Answer / gaurav s

Please could you read the question once again guys. I need
technical rreason how this change makes impace in
background process. Adding more to ur response, you have
told about proposal column, i want to know about check
indicator column, how it impacts the auth-check when we
change it from yes to no.

Answer / mj

N = Do not check; X = Always check; Y = Check + USOBT entry
The flag indicates how the system is to deal with the
authorization object (new mode) for an authorization check.


Value 'N' Authorization object is not checked when the
transaction is called.

Value 'Y' Authorization object is checked when the
transaction is called. The values for the fields of the
authorization object must also be maintained in table USOBT
for the profile generator.

Value 'X' Authorization object is checked, but the field
values are not specified in table USOBT for the profile
generator.

Value (SPACE) A valid flag ('N', 'X', or 'Y') has not yet
been assigned to the authorization object.

Answer / sky fly

No -> yes
changed auth. objects 'are now included in the affected
roles.if any field does not have a value in the role, then
authority check for the user will fail.
Yes -> No
changed auth. objects are now removed from the affected
roles. there will be no failure of authority check.

Answer / sanjay

Asia,

Everyone understood the question and replied accordingly except you. Words are changed but meaning is not.

Tell me about your SAP Career? (all interviews start with this queshion only...pls tell me a template for this answer)

1 Answers  

how do we get list of users who are having mail-id’s in SU01 (Address tab)

4 Answers  

User tring to submit the request in GRC but user getting error, what could be the reason , while all BRF+ & MSMP working fine.?

1 Answers   TCS,

Tell me about the license types and what kind of users need to be assigned to these license types

1 Answers   Atos Origin, Wipro,

How we do Scheduled jobs in background to cleanup spool request, dumps

2 Answers   IBM,

what is the table to find out roles for which profile are not genarated and genarated.I mean to say table to find the roles in which the authorization tab is green and roles in which authorization tab is red.

2 Answers  

what is the critical issue u are faced in your previous experience

0 Answers   Accenture, CTS,

how to modify a mass users validity,address,email...at a time ?

3 Answers   IBM,

What is the parameter in security audit log (sm19) that decides the number of filters?

1 Answers  

What is use Of SHDB (Transaction Recorder) ?

2 Answers   Patni,

Is SU25 step(2nd) is mandatory when SAP up-gradation happened?

2 Answers   Accenture, RB,

Hi , Currently i am working in an MNC company as an SAP Security tier1 member , we will take care of User Administration , Profile/authorization administration activities .Could any one tell me , is i am eligible to apply for an SAP Security job for 2 years experience . Could any one tell me about SOD , SOX Audit and Virsa tool , i have never worked before . Prakash

3 Answers   IBM,