auth/authorization_trace is a SAP Parameter attribute which is used to control Trace every authority-check once for authorization proposals information. This is available within R/3 SAP systems depending on the version and release level.
Below is the standard documentation available and a few details of the attributes values .
The authorization trace collects data across clients and user
independently, and stores it in the database.
During the execution of a program, every authorization check is recorded
exactly once, together with the name and type of the running
application, the point in the program, the authorization object, and the
checked authorization values.
The trace database table supports the maintenance of authorization
default values.
The parameter auth/authorization_trace can have the following values:
N: Trace deactivated
Y: Trace activated
F: Trace activated with filters (SAP Note 1854561). You can set the
filters for the recording in transaction STUSOBTRACE. You can use
application type, users, and authorization objects as filters. In this
way, you can investigate specific scenarios. At least one filter must be
set, otherwise the trace does not record anything. With filters, the
volume of data and thefore the effect on the performance of the system
are significantly smaller than with Y.
Space: With this setting, the trace is activated is SAP systems (profile
parameter transport/systemtype = SAP), and deactivated in customer
systems (transport/systemtype = CUSTOMER). This is the default setting,
if the parameter has not been set in the instance profile or default
profile (DEFAULT.PFL) and has not been dynamically changed.
Caution
The activation of the authorization trace without filters has a
significant effect on performance.
See SAP Parameter Documentation for full SAP documentation for this profile parameter.