can we restrict access through tcode added manually in
authorisation data in creating a role?
Answers were Sorted based on User's Feedback
Answer / deepak popalkar
Object S_USER_TCD controls the access of tcodes that user
can include while creating role. So if we want user to
includes no tcodes in role then we can make this object
inactive.
Is This Answer Correct ? | 2 Yes | 2 No |
Answer / karunakar
Hello,
As per my knowledge we can restrict the access by adding
tcode manually
go to the authorization tab -- change authorization data---
go to s-tcode object in cross application--- give the values
which t code you want to restrict ex-- su01 give the values
a* - st*, suoo*-- su02*, 0-9
i hope this will help to your question ,
Please let me know if i am wrong
Is This Answer Correct ? | 0 Yes | 1 No |
What is the difference between VIRSA Tool and GRC, and does VIRSA tool support to ECC6.0?
How to lock all the users at a time?
Whr will u find u Generation logs in BI security and What are Generation logs will come
Could you please let me know the exact step by step process for the following Questions. 1.How to get the E-Mail address for 100 users at a time. 2.While Creating BW roles what are the Authorization Objects we will use. 3.While Creating Single role what will be happened in the functional side, when entered the Template role in the derived role tab. 4.when we changed the password for more users(for example:100 users) where the password will be stored or from where you can Re-Collect the password and how will you Communicate the password to all users at a time. 5.What is Virsa? Once you entered in to the screen what it will perform. 6.What is the use of SU24 & SM24. 7.While Creating BW roles what are the Authorization Objects we will use. 8.While Creating Single role what will be happened in the functional side, when you entered the Template role in the derived role tab. 9.What is Dialog users, Batch users and Communicate users. What is the use with Communicate user. 10.Can we add one Composite role in to another Composite role at any urgent user requests or in normal user requests. 11.In Transport what type of Request we will use.Why don't we use Workbench request in transport. 12.When we added Authorization Object in Template role, at the same time what will be happen in Derived role. 13.How to Check Profile parameter. And how to find whether any transport has ended with error and where we can check. 14.How to Extract users list like who didn't login since 3 months. And In 90 Days user Locking in which table we will use. 15.What is OSS Connection and System Opening and why we have to open these. 16.What will have in one single role and how many prifiles will be in one sap cua system. 17.What is the difference between Template role & Derive role.
What are the upgrades happened in GRC 5.3 from GRC 5.2?
You want to force a user to change their password. How would you do it?
what is the rule set in GRC?
can u secure profiles ? if so , hou to do it ?
How do i display users with SAP_ALL roles.
How to restrict except "Role" remaining all (user,etc everything) under SUIM T-Code ?
1 How many tickets usually get per day/month in support ? 2 what is the major ticket in your experience ? 3 what is the tool you are using in your company? 4 in situation we will use Derive roles in support project? 5 One User asked me the TCODE access in support project,he got approvals from all,so shal i create new role or can i add that TCODE in his roles? 6 what is ROLE OWNER? 7 What are the daily activities in your Project ?
what are the prerequisites we should take before assigning sap_all to a user even we have approval from authorization controllers ?