SAP Authentication and SSO Tables

Are you looking for the right table related to SAP Authentication and SSO Tables to query in an ABAP Program, Class, Function Module and OData API?

There are number of standard tables in SAP S/4HANA system. The data of an application is distributed across several database fields. Finding the right table is important, in this post we'll look at list of all the tables in Authentication and SSO (BC-SEC-LGN) module.

Top 10 tables in Authentication and SSO

TableDescription
USR_TOTPTOTP user data
OA2C_CLIENT_EXTOAuth 2.0 Clients - ROPC - Username
OA2C_SAML2_ENTSAML2 Entity Table for OAuth 2.0 Client
OA2_SD_CLTOAuth2 Client Texts
OA2_SR_CTX_SCOAuth2 ServerContext-Scope-Assignm. (Server Impl., Runtime)
OA2_SD_CL_SCOAuth2 Client-Scope-Assignment (Server Impl., Designtime)
OA2C_PARAMOAuth 2.0 Client Parameters
OA2C_CLIENT_MULTOAuth 2.0 Client Profile Assignment
OA2_SR_A_CTX_SCOAuth 2.0 Authorization Code Context Scope Assignment
SEC_POLICY_CUSTTConfiguration of Security Policies (Texts)

List of SAP tables for Authentication and SSO

TableDescription
USR_TOTPTOTP user data
OA2C_CLIENT_EXTOAuth 2.0 Clients - ROPC - Username
OA2C_SAML2_ENTSAML2 Entity Table for OAuth 2.0 Client
OA2_SD_CLTOAuth2 Client Texts
OA2_SR_CTX_SCOAuth2 ServerContext-Scope-Assignm. (Server Impl., Runtime)
OA2_SD_CL_SCOAuth2 Client-Scope-Assignment (Server Impl., Designtime)
OA2C_PARAMOAuth 2.0 Client Parameters
OA2C_CLIENT_MULTOAuth 2.0 Client Profile Assignment
OA2_SR_A_CTX_SCOAuth 2.0 Authorization Code Context Scope Assignment
SEC_POLICY_CUSTTConfiguration of Security Policies (Texts)
OA2_SR_RT_CTX_ATOAuth2 Server Refresh Token Context Access Token Assignment
OA2_SD_SCSETOAuth2 ScopeSet (Server Implementation, Designtime)
OA2_SR_CTX_SCSETOAuth2 ServerContext-Scopeset-Scope-Assignment
OA2_SD_SCOAuth2 Scope (Server Implementation, Designtime)
SEC_POLICY_RTSecurity Policy (Runtime Details, Kernel Use)
OA2_C_SD_SCOAuth2 Scope (For Gateway Service Groups in Hub)
OA2_SD_NSCSETOAuth2 ScopeSet
USR01User master record (runtime data)
USRCERTRULEMIGMigration table for rule based certificate mapping
OA2C_CLIENT_PROFOAuth 2.0 Client Profile Assignment
SUAUTHVALTRCAuthorization Trace
USH02Change history for logon data
OA2_SD_CL_SCSETOAuth2 Client-ScopeSet-Assignment (Server Impl., Designtime)
OA2_SD_NSCSET_SCOAuth2 Scopeset-Scope-Assignment
SPN_REPLAY_CACHESPNego Cache stores Token Hashes for Replay Prevention
OA2_SD_SCTOAuth2 Scope Description
SUAUTHVALFILTERAuthorization Trace Filter
SEC_POLICY_CUSTConfiguration of Security Policies
SEC_POLICY_ATTRList of Available Security Policy Attributes
USERINFO_STORAGEInternal Use in Class CL_USERINFO_DATA_BINDING
USR02Logon Data (Kernel-Side Use)
OA2_SD_SCSET_SCOAuth2 Client-ScopeSet-Assignment (Server Impl., Designtime)
OA2C_CLIENT_CONFOAuth 2.0 Client Configuration
REENTRANCETICKETStorage of reentrance tickets (short-lived, one-time usage)
OA2C_CLIENTOAuth 2.0 Clients
USRPWDHISTORYPassword History
USRCERTMAPCertificate Mapping
OA2_SD_NSCSETTOAuth2 Scopeset Description
OA2C_TOK_EXTOAuth 2.0 Token Admin table (Extension)
OA2C_HTTPC_CFGOAuth 2.0 Clients - HTTPC - Settings
OA2_SR_RT_CTX_SCOAuth2 Server Refresh Token Context Scope Assignment
OA2C_TOKEN_SCOPEOAuth 2.0 Client Scopes
OA2C_PROFILESOAuth 2.0 Client Profiles
OA2_SR_CTXOAuth2 ServerContext (Server Implementation, Runtime)
OA2C_STATE_ACOAuth 2.0 Client Authorization Code State
OA2_SR_RT_CTXOAuth2 Server Refresh Token Context
OA2_SD_CLOAuth2 Client (Server Implementation, Designtime)
OA2C_TOKEN_ADMOAuth 2.0 Token Admin table
USR40Table for illegal passwords
OA2P_SCOPESOAuth 2.0 Client Scopes
USRCERTRULEActive Rules for Rule-Based Certificate Logon
OA2C_TOK_EXT_SCOAuth 2.0 Client Scopes
OA2_SR_A_CTXOAuth 2.0 Authorization Code Context
OA2C_TYPESOAuth 2.0 Client Service Provider Types
OA2_C_SD_SCTOAuth2 Scope Description (For Gateway Service Groups in Hub)
USR_TOTP_REPLAYTOTP replay data
USR05User Master Parameter ID
USR41User master: Additional data