Log Level and Authority for Error Log

What causes this issue?

The system issues an error message and will not allow you to continue with this transaction until the error is resolved.

System Response

How to fix this error?

Available Levels
Due to SAP security standards there are two levels available for the
error log.
<ZH>Secure Level</>
This is the default level. This level is necessary to do a first problem
analysis and has the following properties:
Error returned by provider application will not be logged at all.
In case of technical problems one or more error log entries might be
written but they do not contain any information about the HTTP request
or response payload.
<ZH>Full Level</>
No limitation. This level is necessary to analyze the application error
or to do further analysis of technical problems if information about the
currently used service request is needed.
Authorization Object
Using transaction
<DS:TRAN.SICF>SICF</> with the assigned authorization object
<EX>S_ADMI_FCD</> with parameter <EX>PADM</>, you can activate,
deactivate and display HTTP traces containing the whole request and
response payload.
This authorization is therefore needed to configure the log level and
display sensitive details of error log entries.
How to Configure the Error Log Level
Run transaction
<DS:TRAN./IWFND/ERROR_LOG>/IWFND/ERROR_LOG</>.
Choose <LS>Error Log-> Global Configuration</>.
A pop-up will appear for changing the log level.
This setting is effective for all users of the current SAP client and is
valid until the next change.
Even if secure level is configured for the current client, you can
change the log level for a specific user to do further error analysis as
follows:
Run transaction
<DS:TRAN./IWFND/TRACES>/IWFND/TRACES</>.
Choose <LS>Add user</>.
Enter the user name.
Change the log level from <LS>secure</> to <LS>full</>.
This user setting is valid for 2 hours.
If the log level for the current client is already set to <LS>full</>,
any level change for a specific user does not make sense and will not be
supported.
Display Error Log Entries
If a log entry was written with <LS>secure</> level, sensitive data will
be shown as <EX>***Hide_due_to_secure_log_level***</>.
If a log entry was written with <LS>full</> level but authorization
object <EX>S_ADMI_FCD</> with parameter <EX>PADM</> is not assigned to
the current user, sensitive data will be shown as
<EX>***No_authority_to_see_detail***</>.
Not available Functionalities due to Secure Log Level
Some functionalities such as replay a request, navigate to transaction
<DS:TRAN./IWFND/MAINT_SERVICE>/IWFND/MAINT_SERVICE</> or display the
current service implementation in backend system require either the
whole request payload or information about service namespace and service
name but these data were not saved in the error log entries due to
secure error log level. Therefore, if you want to use these
functionalities you have to reproduce the errors to get new error log
entries with all necessary information.

Procedure for System Administrators

Error message extract from SAP system. Copyright SAP SE.