i need to give authorisation to a user to su01 tcode but
the delete options should not work..i,e the user should be
able to Create,disp,change etc but not delete on su01. how
cam i do this?
Answers were Sorted based on User's Feedback
Answer / vijay
hi,
delete the 06 activity from s_user_grp, not from s_user_aut
regards
vijay
Is This Answer Correct ? | 37 Yes | 4 No |
Answer / gurunath
To make the delete option not to work,go to pfcg->select
role->change authorization->expand object class basis
administration and delete 06 in all the activities which u
come across in it,and then do user comparision and check
again with su01.
Is This Answer Correct ? | 3 Yes | 5 No |
Answer / raj
Remove the 06 value from the S_USER_AUT auth object to
remove the delete authorization. It works.....
Is This Answer Correct ? | 11 Yes | 24 No |
Answer / deepak balhara
Run PFCG and then uncheck Delete(06 value) from s_user_aut.
Is This Answer Correct ? | 1 Yes | 14 No |
if user enters a tcode how the system knows what action should be done ?
3 Answers Deloitte, Pranav Systtech,
What is the difference between Parent role and Composite role
What is sap cryptographic library?
how to add abap role to portal users?
What are pfud t-codes used for?
how to do Reporting and Analysis authorizations
How to assign single tcode to 100 roles with single take
how do we test security systems.what is the use of SU56
Q1) What is an Authorization Group and when is it used? Explain with example???
1.What is the difference between Su24,su22,and su21? 2.What are the advantages of GRC in segregation of duties when we compare with virsa? 3.There is one derived role, if i copy the role of derived role will the parent or master role will be the same for the new which is derived from the derived role, if so why if not why? 4. what are the organizational level?
What are su 24 t-codes used for?
What is the name of background job in FF that is responsible for sending notification and logs to FF id controller ?