User Master Record
A valid user master record must exist for all users accessing the SAP system. The user master is accessed through the transaction SU01 (there is a separate version of the tcode, SU01D for display).
![SU01_initial_screen SU01 - User Maintenance](https://sapsecuritypages.com/blog/wp-content/uploads/2010/10/SU01_initial_screen.png)
There are a number of tabs for maintainining different data for the users. Some of the more important tabs with the data they contain are given below.
- Address – First, Last Names, Department, Email, Telephone, Language
![User Maintenance - Address Data User Maintenance - Address Data](https://sapsecuritypages.com/blog/wp-content/uploads/2010/10/SU01_address.jpg)
- Logon Data – Password, User Group, User Type, Validity
![User Maintenance - Logon Data User Maintenance - Logon Data](https://sapsecuritypages.com/blog/wp-content/uploads/2010/10/SU01_logon-data.jpg)
- Parameters – User Parameters
![User Maintenance - Parameters User Maintenance - Parameters](https://sapsecuritypages.com/blog/wp-content/uploads/2010/10/SU01_parameters.jpg)
- Roles – These give access to the differenet function with the SAP system
![User Maintenance - Roles User Maintenance - Roles](https://sapsecuritypages.com/blog/wp-content/uploads/2010/10/SU01_roles.jpg)
- Profiles – Lists the profiles corresponding to the role entries
![User Maintenance - Profiles User Maintenance - Profiles](https://sapsecuritypages.com/blog/wp-content/uploads/2010/10/SU01_profiles.jpg)
- License Data – License type for user. This field is evaluated as part of license audits.
![SU01_license_data User Maintenance - License Data](https://sapsecuritypages.com/blog/wp-content/uploads/2010/10/SU01_license_data.jpg)
Hi Aninda,
Thanks for the stuff.
one question here. What is the use of Personalization tab in SU01 ?
Is it possible to customize these tabs for users ?
Thanks
Gaurav S
Dear Aninda,
What is the difference b/w usr group in the logon tab and in Group tab?
r u Egyptian basha ?
Hi Basha,
the authorization group is to segregate the users based on the authorization check.
it is generally used in the authorization object s_user_grp
ex: MM,SD,HR
whereas the user group present in group tab is used for reporting purpose only.
can u plz explain the parameters tab in su01.
thanks once again for providing security topics with screen shots ..you r doing a grt job!!
parameters are used for providing default values for a user in various transactions. For example, there are parameters to control which plant or comapny code you work for. So any transactions you execute will have plant/company code values already filled in.
Hi Aninda,
Thanks for your useful info, if possible share me some info on personalization tab in su01 and why this tab is mainly used.
Regards,
Bhargav
Hi Aninda,
Thanks for your valuable posts on SAP Security fundamentals as it helped me to clear most of my doubts pertaining to security.I have below query; could you please help me on the same?
– Do you what does it mean by activty groups in SAP? and what is the use of the same in security?
Also are we (security)responsible for maintaing the activity groups? if yes then what are the steps?
Thanks,
Sameer,
Activity Groups is the old name for roles during the times of SAP R/3 3.1 and older. However some documentation still uses the old term.
Thanks,
Aninda