SAP User and Authorization Management Tables
Are you looking for the right table related to SAP User and Authorization Management Tables to query in an ABAP Program, Class, Function Module and OData API?
There are number of standard tables in SAP S/4HANA system. The data of an application is distributed across several database fields. Finding the right table is important, in this post we'll look at list of all the tables in User and Authorization Management (BC-SEC-USR-ADM) module.
Top 10 tables in User and Authorization Management
| Table | Description |
|---|---|
| USADDEFS | Shadow table: Default company address |
| TACTT | Activities that can be protected |
| SUID_USORGDEF | Default User Organization |
| USH10 | Change history for authorization profiles |
| TFBLK | Function blocks for price list |
| AUTHX_ATTR | Authorization Fields - Attributes (Maintenance with SU20) |
| USEXIT | Individual Maint. Dialog for Authorization Field - Exit FM |
| TBRG | Authorization groups |
| USKRIAT | Text table for USKRIA |
| USCRAUTH | Authorization Data for Critical Authorizations |
List of tables in User and Authorization Management
| Table | Description |
|---|---|
| USADDEFS | Shadow table: Default company address |
| TACTT | Activities that can be protected |
| SUID_USORGDEF | Default User Organization |
| USH10 | Change history for authorization profiles |
| TFBLK | Function blocks for price list |
| AUTHX_ATTR | Authorization Fields - Attributes (Maintenance with SU20) |
| USEXIT | Individual Maint. Dialog for Authorization Field - Exit FM |
| TBRG | Authorization groups |
| USKRIAT | Text table for USKRIA |
| USCRAUTH | Authorization Data for Critical Authorizations |
| USLA04 | CUA: Assignment of Users to Roles |
| USADDEF | Default company address |
| USBAPILINK | CUA: Default BAPI Link for Central User Administration |
| USH02_ARC_TMP | Change History for Logon Data: Last Entries from Archive |
| IDM_BADI_FILTER | BADIs for Identity Management |
| USH04 | Change history for authorizations |
| LICENSE_HASH | Index Table to Allow Quicker Access to LICENSE_DATA |
| TADMT | Texts for table TADMI |
| SUSR_UST12 | Reference Structure for Change Documents (Auth. Values) |
| USCRAUIDT | Short Texts for Critical Authorizations |
| SUID_ENV | Identity Model Settings |
| TSTCA_C | Values for Transaction Code Authorizations |
| USCOMPANYS | Shadow table for USCOMPANY |
| USOGR | Object groups for TCode < > Auth. object assignment |
| LICENSE_DATA | Storage of SAP Licenses |
| USL04 | CUA: Assignment of Users to Local Profiles |
| USCOMPANY | Company in user's address |
| USKRI | Critical combination of authorizations for transactions |
| SUKRI | Transaction Combinations Critical for Security |
| SUID_USORGDEFS | Default User Organization Shadow Table |
| USARC_CDRED | Reloaded Archived Change Documents for User Data |
| TFBKT | Function blocks in the SAP system |
| IDM_BADI_TEXT | Description of BADIs for Identity Management |
| USOGT | Texts for object groups |
| USCRCOMID | Part List for Critical Combinations of Authorizations |
| AUTHX | Authorization Fields (Maintain with SU20) |
| USKRIA | Entry of Critical Auths for Report RSUSR009 |
| USAGR_SYS | GUM: Assignment of Role/Position to System (Type) |
| USAPPLREF | CUA: Assignment of Users to Application Objects |
| AUTH_FLDINFO_TMP | Authorization fields: technical info from dictionary |
| USH10_ARC_TMP | Change History for Profile Data: Last Entries from Archive |
| USARC_CD | Not Required: Archived User Data -> Change Documents |
| USDOCU | Documentation User and Authorization Administration |
| USOTT | Relation transaction > authorization object |
| TOBJT | Short Texts for Authorization Objects |
| UST04 | User masters |
| USRVARID | Part List of Variants for Critical Authorizations |
| TAUTL | List of tables AUTH (authorization fields) |
| USRVARCOMT | Short Texts for Variants of Critical Combs of Authorizations |
| USR15 | External User Name (Replaced By Table USRACL) |
| USR03 | User address data |
| USZBVLNDSC | CUA: System Landscape Sender |
| TACTZ | Valid activities for each authorization object |
| USR_CUST | Customizing Settings for Users / Authorizations |
| USCRAUTHID | Critical Authorizations |
| IDM_INTEG_CUST | Identity Management SPML Configuration |
| TACT | Activities which can be Protected |
| TOBJ | Authorization Objects |
| TOBCT | Texts for Authorization Object Classes |
| SAPLIKEY | Storage of SAP License Keys |
| USR16 | Values for Variables for User Authorizations |
| TADMI | Foreign key table for values of object S_ADMI_FCD |
| USR20 | Date of last user master reorganization |
| USR_FLAGS | Various Flags for Authorization Programs |
| USH12_ARC_TMP | Change History for Authorizations: Last Archive Entries |
| USGRPT | Text table for USGRP (User groups) |
| USZBVPROT | CUA: Protocols of the Distribution of Users |
| SLICORDER | List of Requested Licenses |
| USUSER_SYS | GUM: Assignment of User (Group) to System (Type) |
| USRBF | User Buffer Contents for Fast RFC Logon |
| USATTRDEFT | Directory of Additional User Attributes |
| USUSER_AGR | GUM: Assignment of Role to User |
| USR_CUST_SYSTEM | System Settings for Users / Authorizations |
| USRVETOTABLES_C | Customer: Usage of the User in Tables |
| USH04_ARC_TMP | Authorizations Change History: Last Entries from Archive |
| USR_BY_GLOBALUID | User UUID |
| USR_DBMS_USER | DBMS User |
| UST10S | User master: Single profiles |
| USR04 | User master authorizations |
| USATTRDEF | Directory of Additional User Attributes |
| USGRP | User Groups |
| USRFLDT | CUA: Text Table to Define Logical Fields |
| TOBJC | Class assignment of authorization objects |
| USR21S | Shadow table: Assignment of user name to address key |
| SUKRIT | Text table for SUKRI (crit. comb. of trans. authoriz.) |
| USZBVPROTCU | CUA: Synchronization Log (Company -> Employee) |
| USZBVSYS | CUA: Assignment of Systems to Users |
| USGRP_USER | Assignment of Users to User Groups |
| USH12 | Change history for authorization values |
| USRVART | Short Texts for Variants of Critical Authorizations |
| TOBJ_ATTR | Authorization Objects (Attributes) |
| USSETTINGT | Text table for USSETTINGS |
| USR_TO_GLOBALUID | User UUID |
| TBRGT | Authorization Group Names |
| USRVETOTABLES | SAP: Usage of the User in Tables |
| USRCOMB | Critical Combinations of Authorizations |
| USRVETO | Veto Check During Deletion of Users |
| TOBC | Class assignment of authorization objects |
| USR11 | User Master Texts for Profiles (USR10) |
| USR_DBMS_SYSTEM | System Settings for User Administration in DBMS |
| USSYSTYP | GUM: System Types |
| USSETTINGS | Customizing settings in user maintenance |
| USRCRCOMB | Part List of Variants for Critical Combinations of Auths |
| USZBVSYSC | CUA: Assignment of Systems to Company Addresses |
| USRSYSACT | CUA: Roles in Distributed Systems |
| USZBVPROTC | CUA: Protocols of the Distribution of Company Addresses |
| USRVETOSTAT | Status of the Check Run |
| USRFLD | CUA: Definition of Logical Fields |
| USSYSTYPT | GUM: System Type Texts |
| USRSYSPRF | CUA: Profiles in Distributed Systems |
| USR_TOTP_DEVICE | TOTP Devices |
| USRVAR | Variants for Critical Authorizations |
| USREFUS | Reference user for internet applications |
| USRVARCOM | Variants of Critical Combinations of Authorizations |
| USR10 | User master authorization profiles |
| UST12 | User master: Authorizations |
| USRSYSACTT | CUA: Roles in Distributed Systems |
| USRFLDDEF | CUA: Definition of Logical Field Names of ALE Distrib. Users |
| USRFLDSEL | CUA: Field Attributes |
| UST10C | User master: Composite profiles |
| USREFUSVAR | Assignment of Reference User Variabe to Reference User |
| USR07 | Object/values of last authorization check that failed |
| USRSTAMP | Time Stamp for all Changes to the User |
| USR_EXTUID | External UID |
| USRVETOPROT | Test Run Log |
| USZBVLNDRC | CUA: System Landscape Recipient |
| USR07_EXT | Object/values of last authorization check that failed |
| USRBF2 | User buffer content for fast RFC logon - new |
| USRCOMBT | Short Texts for Critical Combinations of Authorizations |
| USR22 | Logon data without kernel access |
| USR12 | User Master Authorization Values |
| USRSYSPRFT | CUA: Profile Text in Distributed Systems |
| USR21 | User Name/Address Key Assignment |
| USRARCSTAT | Reloaded Archiving Runs |
| USR13 | Short Texts for Authorizations |
| USRATTR | Additional Attributes for Users |
| USRBLOCK | Deleted Users - Lock Entries |
| SUIM_CHG_IDX | Change Document Index for User Data |
| USRFLDVAL | CUA: Selection Criteria for Field Attributes |
| USRFLDGRP | CUA: Field Selection Groups |