one tcode,say sa38, is assigned to 10 diffrent users
through a same role.I want to restrict one of those 10
users to execute only a few reports in sa38 but not all
reports.what are the possible ways of getting it done?
Answers were Sorted based on User's Feedback
Answer / jeevansukka
if we make changes to the exisiting role, then access will
be changed to the rest of the users also,hence as per my
knowledge, the best way is to maintain a seperate role to
restrict the access and provide it the user, who has to be
restricted.
Is This Answer Correct ? | 32 Yes | 2 No |
Answer / vikas srivastava
Report can be secure by authorization object S_PROGRAM
S_PROGRAM has two field P_Action and P_Group
P_Action cab have these values:
SUBMIT: Start the program
BTCSUBMIT: Schedule the program to run as a background job
VARIANT: Maintain variants.
P_Group requires authorization group which is attached to
report by this way we can restrict a report to access.
Is This Answer Correct ? | 3 Yes | 0 No |
Answer / rax
Hi all,
Generally all roles (containing t-codes) are planned and
created depending on an individuals position (ex- sales mgr)
during implementation. So, the above situation never arises.
According to me this question is just to know the
interviewee's knowledge....
For this particular scenario the answer would be ....
The end user to access reports or programs he needs to have
access to authorization object S_PROGRAM. So,we first
manually add this authorization object to his existing role.
This object has an authorization field called AUTHORIZATION
GROUP in which we can maintain all programs or reports he
has to be given access to....
Is This Answer Correct ? | 3 Yes | 4 No |
What are su 24 t-codes used for?
Mention which t-codes are used to see the summary of the authorization object and profile details?
The system raised a message that authorizations are missing but you have SAP-ALL. What would you do?
What every changes done exist role in development system that changes are not reflected in quality system, but transport is successfully moved?
In which table you can see authorization group for table and which table to see authorization group for program?
Q)if u r using 10 firefighter ids at a time? How will the log reports goes to controller? Q)wt is ruleset? and how to update risk id in rule set? Q)wt is the procedure for Role modifications?explain with example? Q)who will done user comparision?
does composit role has autherisations,how to we add the org values in composit role,What is the max authorizations objects that can be assigned to a profile
when performing client copies what steps you need to take from CUA point of view?
how to assign a tcode to user without a role?
we have one parent role and we derived five roles from that and i assigned these derived roles to five users now i want to restrict 2 users for couple of T-codes and rest of the users work with those T-codes , How we can solve the problem
What is purpose of using Pound Sign(#) and colon(;) in BI/BW security
Could any one tell me "What is critical authorizations in sap security"?