Answer / shanu

In that case you need to create and assign authorization
group to report rsusr003. you can also create tcode for
this report and assign it to user in separate role.In the
new role maintain the object S_PROGRAM with specific auth
group.

No need to remove the SA38 from role.

Just make sure the SA38 role should restricted the access
got object S_PROGRAM. It should not be '*'.

Program Check (Object – S_PROGRAM, Values – Execution and
the authorization group).

Answer / naveen kumar

The question is bit logic, you have to create a new role
with tcode SE38 and in authorization object S_DEVELOP the
activities DEVCLASS '*'
OBTYPE '*'
OBNAME ' RSUSR003'
p_group '*'
activity '03'

Answer / ratnadeepika

Hey guys , One more solution is there .

Go to SE93 ...create a new tcode for eg : ZSA38 .

with the option Transaction with parameters option ...

In the main screen Tcode field give SA38 as tcode ...and u
will find 'DEFAULT VALUES" ...Add the entry
Name of the screen field : RS38M-PROGRAMM
Value : RSUSr003 save . If u want u can add some more
values .

Give this Tcode access to the user u want to restrict .

Try it and let me know if u are facing any problems . Mail
me for screenshots .

Answer / subal

Hi,

In that case you need to create a new role for such users.
Remove the SA38 role.
Create a new role with the required reports and assign the
role to the user.

Thus user will loose access to SA38 and get direct access
to required reports eg rsusr003.

Regards,
Subal

Answer / vamshi

screens shot for this as well pls ;

what is sox and in sap security?

2 Answers   IBM,

Hi, Can any one tell me, what is roles and responsibilities for SAP-Security resource in 'Netweaver Identity Management'

0 Answers  

How we Assigning roles to users positions in HR, troubleshoot access issues

2 Answers   IBM,

How to find ECC system, GRC system and BI system ?

0 Answers  

what is use of copy data in derived role and when we use this one ???

0 Answers  

I want to give access to sec admin for assigning roles to users, but self assignment should not be possible . how it is?

1 Answers  

1).what is the diff b/w adding the tcode in s_tcode authorization object and addind the tcode inmenu tab of pfcg? 4) What is the difference between Owner, Controller and Administrator in Firefighter? 2) Can you tell me why do you use S_TABU_DIS authorization object? 3) Explain How do you restrict a particular table acces then? 5)In RAR ,What are the default Back ground Jobs? 6)Which job will update all user master records? 7)What will happen whenever we execute a t-code? 8)What is the purpose of the report RSUSR006? 9) Lets say a user is locked by admin? What value will you see in USR02 table and in UFLAG column? 10) What will you do if the user complains that he is not able to access a t-code? 11)why we have to delete users ? 12)a. What is Direct role assignment and indirect role assignment? b. What is the process of adding a t-code to an existing role? c. If client asked you to modify a role directly in PRODUCTION for emergency? Is it possible? What you will do in that situation? d. What is the purpose of customized Transaction codes? Have you created any custom t-codes? 13)

3 Answers   IBM,

How can we update the unique E-mail IDs for 1000 users at a time?

3 Answers   Satyam,

what is the user table including account number and cost center in one table?

3 Answers   Patni,

what is sod in sap security?

0 Answers  

How to restrict except "Role" remaining all under SUIM T-Code ?

3 Answers   Accenture,

why we are using the landscape in sap r/3 ?

4 Answers   HP,