Answer Posted / rax

Hi all,

Generally all roles (containing t-codes) are planned and
created depending on an individuals position (ex- sales mgr)
during implementation. So, the above situation never arises.

According to me this question is just to know the
interviewee's knowledge....

For this particular scenario the answer would be ....
The end user to access reports or programs he needs to have
access to authorization object S_PROGRAM. So,we first
manually add this authorization object to his existing role.
This object has an authorization field called AUTHORIZATION
GROUP in which we can maintain all programs or reports he
has to be given access to....

You want to remove a developer's and developer keys from a system. How would you do that?

1100

---

what is hypercare and go live support?

5340

---

what are the issues you faced with UME?

3065

---

You wan to transport user groups from transaction sugr? Would this impact the groups tab in su01? What would you do?

1203

---

What are the uses of an authorization group?

1203

---

Explain x-glueb and its use in sap security.

1357

---

Differentiate between saml token profile and a sap logon ticket

1395

---

What are the upgrades happened in GRC 5.3 from GRC 5.2?

4208

---

how we can see FFID if firefighter not able to see FFids ?

2059

---

Authorization check on s_btch_job failed. What would happen now?

1216

---

How can sap security be improved?

1125

---

how we Completely designed and implemented methodology for controlling end user access to plants, cost centers, etc. and how we Applied to both R/3 and BW environments.

2135

---

what things you have to take care before executing run system trace?

1250

---

How to insert missing authorization?

1148

---

What does user compare do?

1208

---