What do the $**** entries in authorisations mean?

$ values mean slightly different things, depending on where you encounter them.

If you are looking in a role, or at the contents of an authorisation profile, seeing a $ value would indicate that an organisation level has not been specified for that role, for example $BUKRS would show that company code org. level is not defined.

If you are seeing $BUKRS values in a GRC Access Risk Analysis, or within the rulset, this refers to an org. level field which is not specified, so the system will look for any value in that field. For example, 02 (change) access within ANY company code.

It is worth noting that GRC uses $ instead of * to indicate ALL values, when used in isolation.