USR* and AGR* TABLES in SAP



In SAP all the data will be stored under tables. we can get the data from standard SAP Tables.

as well as all the Users & Roles data also will be stored under tables.

As a SAP Security Consultant we should know the users and Roles related tables in SAP.

Here we are discussing about User Tables called as USR* tables and Roles Tables called as AGR* tables.

We can get the users change history information also by using USH* tables.

Check and Execute these tables in SE16 T-code.



USR* Tables :

Table Name                           Description
USR01                                   User master
USR02                                   Logon data
USR03                                   User address data
USR04                                   User master authorizations
USR05                                   User Parameters
USR11                                   User Master Texts for Profiles (USR10)
UST12                                   User master: Authorizations
USR12                                   User master authorization values
USR13                                   Short Texts for Authorizations
USR21                                   Assign User name address key
USR40                                   Prohibited passwords/Illegal Passwords
TOBJ                                      Objects
TOBC                                     Authorization Object Classes
TPRPROF                             Profile Name for Activity Group
DEVACCESS                        Table for developer access key of users


USH* Tables:

USH02                                   User Logon change data
USH03                                   User change address data
USH04                                   User change master authorizations
USH05                                   User Parameters change history                           


AGR* Tables:


AGR_AGRS                       Find composites & singles
AGR_DEFINE                   Find derived & singles
AGR_1250                         Find Auth objects & T-codes in role
AGR_1251                         Find all values in a role (t-codes,auth objects, activities,org values)
AGR_1252                         Find organization values in a role
AGR_USERS                    Find users assigned to role
AGR_ROLES                    Find Roles

AGR_TCODES                 Find T-codes in a Role


We can get this Roles and Users information by using Reports and SUIM t-code also.


FYI.........Screen shots for USR01 & USH02 










No comments: