Most Common Security Tables

Most Common Security Tables

Below are the most common Security tables beginning with USR, AGR or UST :-

  • USR02 - Users with logon data

    image-20240514164030609

  • USR04 - Users by authorization profile assignment

    image-20240514164122466

  • USR05 - Users by user parameters

    image-20240514164335597

  • USR10 - Profiles with authorizations

    image-20240514164448849

  • ARR_1251 - Authorization data for roles - AGR1251?

    image-20240514165135740

  • AGR_1252 - Organizational data for roles

    image-20240514165220824

  • AGR_USERS - Roles assigned to users

    image-20240514165348716

  • AGR_PROF - Profiles defined for roles

    image-20240514165519865

  • AGR_HIER - Menu for a role

    image-20240514165657852

  • AGR_TIME - Change date/time for a role

    image-20240514165930237

InfoTypes

Infortypes or Information Types are structures to stores related HR data. For example, address of an employee is stored in an unique infortype 0006. Similarly we have different infortypes storing personal data (0002), bank details (0009), basic salary (0008),etc.

Some inftypes are further sub-divided into subtypes, an example being the address infotype. An address entry can belong to the subtype permanent residence, temporary residence, emergency address, mailing address, etc.

Infotypes are relevant from a security standpoint as SAP provides standard authorization objects which allow us to secure infotype, subtype combinations for users.

The first thing to note from the above examples is that all of them are attributes of a person. You store address of a person, salary of a person, bank details of a person. However, infotypes can just as well store attributes of HR objects like positions, jobs, tasks, ect.

Depending on whether an infotype stores attributes for a person or a HR object, we can divide them into infotypes required in Personnel Administration (PA) or Personnel Planning (PP) respectively.

The PP infotypes are also referred to as infotypes for Organizational Management (OM) or Personnel Development (PD). The distinction between PA and PP infotypes is important for security as the two basic types of infortypes are secured by means of different authorization objects.

Each infotype is associated with an unique 4 digit number:-

  • 0000-0999 - Personnel Administration (PA)
  • 1000-1999 - Personal Planning (PP)
  • 2000-2999 - Time Management (PA)
  • 4000-4999 - Recruitment (PA)
  • 9000-9999 - Customer Specific (Can store either PA or PP information depending on infotype configuration)

image-20240514173440142

Basic Data, Payroll Data, Time Data, Addtl. Personal Data Tax Data

posted @ 2024-05-16 18:45  晨风_Eric  阅读(4)  评论(0)    收藏  举报