Register Login

SAP Transaction Codes SM01

In SAP R/3 there are more than 50000 english transaction codes. Some of these transactions are very dangerous and user access to such transactions should be restricted. So what exactly are dangerous transactions in SAP R3. Dangerous T-Codes can corrupt or damage the SAP system. Such transactions also present a security risk and haev an adverse impact on the SAP system performance.

Usually, access to such dangerous SAP transactions should be restricted to the production system. Development and test systems do not pose that much of a risk. The production system is important because it contains live data and the entire company's operations are dependent on such data. Restricting access to dangerous SAP transactions can be done in two ways. The first way is to restrict the user through standard SAP security to such transactions. The second line fo control is to lock such transactions at the client level. Once locked such transactions cannot be accessed by any user. Critical transaction codes from each SAP module should be locked after thorough consultation with the functional process owners.



  • 28 May 2008 11:24 am Guest
    What are other transation which can damage the system.
    If have list please share so we can protect systems.

  • 14 Feb 2012 9:29 am Sandeep Lohia
    I am an auditor please if u have a list of such dangerous t-codes please share so that we can protect the system well.

  • 11 Apr 2012 8:07 am Esau Maloka
    I am also an auditor if u have a list of such dangerous t-codes kindly forward the list to so that we can protect the system well.
  • 18 Apr 2012 7:43 pm Bishwanath kanjilal
    can u list some t codes that should be locked
  • 09 Jun 2012 9:23 am NIranjan Palei
    Hi ,

    I am newly started working as a basis admin, kindly help me which book i must refer or the web link i should go through to find out the best solutions for my doubts or the problems.

  • 11 Sep 2012 9:07 pm Syed Afsarullah
    Critical Transactions.....enjoy!

    Archiving KA10      Archive cost centers (all)
    Archiving KA12      Archive cost centers (plan)
    Archiving KA16      Archive cost centers (line items)
    Archiving KA18      Archive admin: assess., distr., ...
    Archiving SARA      Archive Administration
    Archiving VARK      Archiving

    Basis Development SE11      ABAP Dictionary
    Basis Development SE13      Maintain Technical Settings
    Basis Development SE37      ABAP Function Modules
    Basis Development SE38      ABAP Editor
    Basis Development SE93      Maintain Transaction Codes

    Basis Table Maintenance SE16 Data Browser
    Basis Table Maintenance SM30 Call View Maintenance
    Basis Table Maintenance SM31 Call View Maintenance Like SM30
    Basis Table Maintenance SPRO Customizing - Edit Project

    Basis Utilities SE41 Menu Painter

    Client Administration SCC1 Client Copy - Special Selections
    Client Administration SCC4 Client Administration
    Client Administration SCC5 Delete Client
    Client Administration SCC7 Post-Client Import Methods
    Client Administration SCC8 Client Export
    Client Administration SCC9 Remote Client Copy
    Client Administration SCCL Local Client Copy

    Configuration RZ04 Maintain SAP Instances
    Configuration RZ06 Alerts Thresholds Maintenance
    Configuration SM63 Display/Maintain Operating Mode Sets
    Configuration SMLG Maint.Assign. Logon Grp to Instance
    Configuration RZ10 Maintain Profile Parameters
    Configuration SM49 Execute external OS commands
    Configuration SM69 Maintain External OS Commands

    Create Transport SE06 Set Up Transport Organizer
    Create Transport SE09 Transport Organizer
    Create Transport SE10 Transport Organizer
    Create Transport SE01 Transport Organizer (Extended)

    Perform Transport STMS Transport Management System

    Security Administration PFCG Role Maintenance
    Security Administration SM19 Security Audit Configuration
    Security Administration SU01 User Maintenance
    Security Administration SU02 Maintain Authorization Profiles
    Security Administration SU10 User Mass Maintenance
    Security Administration SU12 Mass Changes to User Master Records
    Security Administration SU03 Maintain Authorizations
    Security Administration SU05 Maintain Internet Users
    Security Administration SU20 Maintain Authorization Fields
    Security Administration SU21 Maintain Authorization Objects
    Security Administration SU22 Auth. Object Usage in Transactions

    System Administration OBR1 Delete Documents
    System Administration SM01 Lock Transactions
    System Administration SM12 Display and Delete Locks
    System Administration SM51 List of SAP Systems
    System Administration SM54 TXCOM Maintenance
    System Administration SM55 THOST Maintenance
    System Administration SM56 Number Range Buffer
    System Administration SM58 Asynchronous RFC Error Log
    System Administration SM59 RFC Destinations (Display/Maintain)
    System Administration SMLT Language Management
    System Administration SPAD Spool Administration
    System Administration SM50 Work Process Overview

    Transport Administration SE01 Transport Organizer (Extended)
    Transport Administration SPAM Support Package Manager
    Transport Administration SE06 Set Up Transport Organizer
    Transport Administration SE09 Transport Organizer
    Transport Administration SE10 Transport Organizer
    Transport Administration STMS Transport Management System

    Maintain Bank Master Data FI01 Create Bank
    Maintain Bank Master Data FI02 Change Bank
    Maintain Bank Master Data FI06 Set Flag to Delete Bank

    Maintain Posting Periods MMPV Close Periods
    Maintain Posting Periods OB52 C FI Maintain Table T001B
    Post Journal Entry F.80 Mass Reversal of Documents
    Goods Movements MB04 Subsequ.Adj.of "Mat.Provided"Consmp
    Maintain Material Master Data MMDE Delete All Materials
    Maintain Purchase Order ME59 Automatic Generation of POs
    Maintain Purchase Order MEMASSPO Change of Purchase Orders
  • 17 Nov 2015 11:40 pm Leonardo Koppes

    Much more than this. Some dangerous transactions code in SAP are illegal. We cannot erase personnel ID in a production environment or change tax rules for sales org. We need to keep in mind that it is working business process.

  • 17 Nov 2015 11:42 pm Leonardo Koppes

    Add this one: PU00 (erase personnel data, including payroll data, kkkk)