In SAP all the data will be stored under tables. we can get the data from standard SAP Tables.
as well as all the Users & Roles data also will be stored under tables.
As a SAP Security Consultant we should know the users and Roles related tables in SAP.
Here we are discussing about User Tables called as USR* tables and Roles Tables called as AGR* tables.
We can get the users change history information also by using USH* tables.
Check and Execute these tables in SE16 T-code.
USR* Tables :
Table Name Description
USR01 User
master
USR02 Logon
data
USR03 User
address data
USR04 User
master authorizations
USR05 User Parameters
USR11 User
Master Texts for Profiles (USR10)
UST12 User
master: Authorizations
USR12 User
master authorization values
USR13 Short
Texts for Authorizations
USR21 Assign User name address key
USR40 Prohibited
passwords/Illegal Passwords
TOBJ Objects
TOBC Authorization
Object Classes
TPRPROF Profile
Name for Activity Group
DEVACCESS Table
for developer access key of users
USH* Tables:
USH02 User
Logon change data
USH03 User
change address data
USH04 User
change master authorizations
USH05 User Parameters
change history
AGR* Tables:
AGR_AGRS Find composites & singles
AGR_DEFINE Find derived & singles
AGR_1250 Find
Auth objects & T-codes in role
AGR_1251 Find all values in a role (t-codes,auth objects, activities,org values)
AGR_1252 Find organization values in a role
AGR_USERS Find users assigned to role
AGR_ROLES Find Roles
AGR_TCODES Find T-codes in a Role
We can get this Roles and Users information by using Reports and SUIM t-code also.
FYI.........Screen shots for USR01 & USH02
No comments:
Post a Comment