{"id":1813,"date":"2014-02-16T09:37:13","date_gmt":"2014-02-16T09:37:13","guid":{"rendered":"http:\/\/sapsecurityanalyst.com\/WP\/?page_id=1813"},"modified":"2015-05-03T07:59:15","modified_gmt":"2015-05-03T07:59:15","slug":"structural-authorization","status":"publish","type":"page","link":"https:\/\/sapsecurityanalyst.com\/WP\/structural-authorization\/","title":{"rendered":"Structural Authorization"},"content":{"rendered":"

 <\/p>\n

Structural authorizations are used to restrict access to organizational structures. It controls access to data stored in time dependent structures like Org Structure, Qualification Catalog etc.<\/p>\n

\"\"<\/p>\n

Structural authorizations are used to restrict users to access a part of the organizational structure.<\/span><\/p>\n

\u00a0Combination of Standard authorization and Structural authorization is used for better Security over HR data. Hence, \u00a0a<\/span>\u00a0user\u2019s overall profile is determined from the intersection of his or her structural or general authorization profiles.<\/p>\n

\"\"<\/p>\n

 <\/p>\n

Transaction code OOAC<\/strong>\u00a0(table T77S0) is used for switching on the Structural authorization main switch. Option AUTSW ORGPD<\/strong> can be set to 1,2,34<\/strong>. Switching it to 0<\/strong> deactivates it.<\/p>\n

 <\/p>\n

Table T77S0<\/strong> Main Switches<\/span>:<\/p>\n

AUTSW ORGIN<\/strong> (HR: Master Data) –\u00a0Authorization main switch that controls whether the P_ORGIN authorization object should be used in the authorization check.<\/p>\n