{"id":914,"date":"2012-02-09T03:39:20","date_gmt":"2012-02-09T03:39:20","guid":{"rendered":"http:\/\/sapsecurityanalyst.com\/WP\/?page_id=914"},"modified":"2013-12-03T13:03:32","modified_gmt":"2013-12-03T13:03:32","slug":"regenerate-sap_all-profile","status":"publish","type":"page","link":"https:\/\/sapsecurityanalyst.com\/WP\/regenerate-sap_all-profile\/","title":{"rendered":"How to Regenerate SAP_ALL profile"},"content":{"rendered":"<p>&nbsp;<\/p>\n<p><span style=\"color: #0000ff; font-family: verdana;\"><!--more--><br \/>\n<span style=\"color: #4c4c4c;\"> SAP_ALL profile is a composite profile which gives almost full access and should only be assigned to administrators for emergency access. As a best practice, it is always advised to create roles for administrators with S_* objects which give the necessary access for administration and prevents them from accessing any critical data like HR related information.<\/span><br \/>\n<\/span><br \/>\n<span style=\"color: #0000ff; font-family: verdana;\"><!--more--><br \/>\nYou can generate SAP_ALL profile in the following scenarios:<\/span><\/p>\n<p><span style=\"color: #0000ff; font-family: verdana;\"><!--more--><\/span><\/p>\n<ul>\n<li><span style=\"color: #4c4c4c; font-family: verdana;\">A new customer-specific authorization object is created. The system regenerates SAP_ALL and updates SAP_ALL profile with the newly created authorization object (condition to &#8211; In PRGN_CUST table, attribute value for switch\u00a0&#8216;SAP_ALL_GENERATION&#8217; is not set to &#8216;OFF&#8217;; otherwise you will have to manual regenerate SAP_ALL profile).<\/span><\/li>\n<li><span style=\"color: #4c4c4c; font-family: verdana;\">After system is upgraded to new release.<\/span><\/li>\n<li><span style=\"color: #4c4c4c; font-family: verdana;\">After every support pack import, provided that the support pack contains new authorization objects <\/span><\/li>\n<\/ul>\n<p><span style=\"color: #0000ff; font-family: verdana;\"><!--more--><\/span><\/p>\n<p><span style=\"color: #0000ff; font-family: verdana;\"><!--more--><\/span><\/p>\n<p><span style=\"color: #0000ff; font-family: verdana;\"><br \/>\n<span style=\"color: #4c4c4c;\">SAP_ALL profile can be manually regenerated using report<\/span> <\/span><span style=\"color: #0000ff; font-family: verdana;\"><strong>RSUSR406 <\/strong><span style=\"color: #4c4c4c;\">or via<\/span> tcode <strong>SU21.\u00a0<\/strong><span style=\"color: #4c4c4c;\">This regenerates SAP_ALL profile only in the client where this report is executed.<\/span><\/span><\/p>\n<p><!--more--><br \/>\n<script type=\"text\/javascript\">\/\/ <![CDATA[\ngoogle_ad_client = \"ca-pub-1241348474673689\"; \/* All content above *\/ google_ad_slot = \"3293572617\"; google_ad_width = 468; google_ad_height = 15;\n\/\/ ]]><\/script><br \/>\n<script type=\"text\/javascript\" src=\"http:\/\/pagead2.googlesyndication.com\/pagead\/show_ads.js\">\/\/ <![CDATA[\n\n\n\/\/ ]]><\/script><\/p>\n<p><span style=\"color: #0000ff; font-family: verdana;\"><strong><\/strong><a href=\"https:\/\/sapsecurityanalyst.com\/WP\/wp-content\/uploads\/2012\/02\/SU21-Regenerate-SAP_ALL.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-918\" title=\"SU21 - Regenerate SAP_ALL\" alt=\"\" src=\"https:\/\/sapsecurityanalyst.com\/WP\/wp-content\/uploads\/2012\/02\/SU21-Regenerate-SAP_ALL.jpg\" width=\"520\" height=\"243\" srcset=\"https:\/\/sapsecurityanalyst.com\/WP\/wp-content\/uploads\/2012\/02\/SU21-Regenerate-SAP_ALL.jpg 520w, https:\/\/sapsecurityanalyst.com\/WP\/wp-content\/uploads\/2012\/02\/SU21-Regenerate-SAP_ALL-300x140.jpg 300w, https:\/\/sapsecurityanalyst.com\/WP\/wp-content\/uploads\/2012\/02\/SU21-Regenerate-SAP_ALL-290x135.jpg 290w, https:\/\/sapsecurityanalyst.com\/WP\/wp-content\/uploads\/2012\/02\/SU21-Regenerate-SAP_ALL-150x70.jpg 150w\" sizes=\"(max-width: 520px) 100vw, 520px\" \/><\/a><br \/>\n<span style=\"font-family: verdana;\"> \u00a0<\/span><\/span><\/p>\n<p><!--more--><br \/>\n<span style=\"color: #0000ff; font-family: verdana;\"><span style=\"color: #4c4c4c;\">SAP_ALL profile can also be generated using report<\/span>\u00a0<\/span><strong><span style=\"color: #0000ff;\">AGR_REGENERATE_SAP_ALL <\/span><\/strong><span style=\"color: #0000ff;\"><span style=\"color: #4c4c4c;\">in<\/span> client <strong>000. <\/strong><span style=\"color: #4c4c4c;\">It regenerates SAP_ALL in all the clients.<\/span><\/span><\/p>\n<p><!--more--><\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&nbsp;<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"_links":{"self":[{"href":"https:\/\/sapsecurityanalyst.com\/WP\/wp-json\/wp\/v2\/pages\/914"}],"collection":[{"href":"https:\/\/sapsecurityanalyst.com\/WP\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/sapsecurityanalyst.com\/WP\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/sapsecurityanalyst.com\/WP\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sapsecurityanalyst.com\/WP\/wp-json\/wp\/v2\/comments?post=914"}],"version-history":[{"count":18,"href":"https:\/\/sapsecurityanalyst.com\/WP\/wp-json\/wp\/v2\/pages\/914\/revisions"}],"predecessor-version":[{"id":923,"href":"https:\/\/sapsecurityanalyst.com\/WP\/wp-json\/wp\/v2\/pages\/914\/revisions\/923"}],"wp:attachment":[{"href":"https:\/\/sapsecurityanalyst.com\/WP\/wp-json\/wp\/v2\/media?parent=914"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}