Re: How to disable user wise VF01/02 Menu Go to- > Header data -> Output.
Moved from SAP ERP SD Sales to Security
View ArticleCOMPOSITE ROLE USER ASSIGNMENT
Hello there,I have got a quick question: I created a Comp.Role with all the Single Roles attached to it and then assigned to all the required users in PRD. Then, the requirement came back saying that...
View ArticleClik here to view.
Re: COMPOSITE ROLE USER ASSIGNMENT
Hi Rehan Please try to go into SU01 and see if you can remove the single role yourself. You will notice that it is in blue as it's indirectly assigned due to the composite role. Try to delete it and...
View ArticleRe: COMPOSITE ROLE USER ASSIGNMENT
Thanks Colleen for the reply. It's not a "Direct Assignment" or else it would have a equal (=) sign. It shows a Composite sign in the User Maintenance Record and that is coming from the Composite Role...
View ArticleRe: COMPOSITE ROLE USER ASSIGNMENT
Hi Rehan Go to PFUD and click on the information button and read up on the composite role scenario. It might sound familiar to your question Instead of pressing the alert moderator for a basic question...
View ArticlePDA Admin - Exclude Own PDA Documents
Dear All, Situation looks like this: Structural Authorizations implemented on our system. PDA Admin with access to one particular Organizational Unit (i.e. Spain) is able to access all PDA documents...
View ArticleRe: COMPOSITE ROLE USER ASSIGNMENT
Rehan, Perform below stepsRemove the specific role from the composite role in development system and capture in a transport request and move it to prd systemOnce the TR is imported in prd system...
View ArticleRe: user is locked please notify the person responsible in sap demo system
Ravi, SAP* user can be deleted if there is no user is able to login but in this case its a IDES system, so you still able to login to IDES 800 client using DDIC username with 19920706 as password and...
View ArticleRe: How to disable user wise VF01/02 Menu Go to- > Header data -> Output.
Tithira Gallage, Sometimes we cant able to get exact authorization object and the activity which required for end user, so in that situation we need to do system trace using tcode ST01, so it will help...
View ArticleRe: COMPOSITE ROLE USER ASSIGNMENT
Some years ago there was a bug, which was corrected with note 1816508.... Please check , if it is relevant for your correciton level... b.rgds, Bernhard
View ArticleRe: Authorization objects of a transaction assigned to a specific role
Hi,Kindly check with the table USOTT which list out the T-code for the respective object. Combine both AGR_1251 and USOTT for your requirement , since the role information is not available in the USOTT...
View ArticleRe: Authorization based on profile parameters
Kaushik, You need to maintain org values alone in derived role and yes you need to create authorization and profile but you no need to enter any other values in derived role where you can centrally...
View ArticleRe: user is locked please notify the person responsible in sap demo system
Hi Ravi, Then you have to delete SAP* from DB at os level and login using pass as password and unlock the username which you want. check this link for delete/unlock username at os levelSAP Basis And...
View ArticleRe: Authorization objects of a transaction assigned to a specific role
Hi Luis, Proposal as 'Yes', in SU24 , will reflect in USOBX_C with OK Flag as Y.also check USOBT_C RegardsPlaban
View ArticleRe: Authorization based on profile parameters
Thanks Bernhard, I get your point. I was hoping for a smaller set of roles since it looks quite unusual for a 150 (active) user organization to have 130 roles. Yes it is risk to expose parameters since...
View ArticleRe: I would like enable security audit log for specific usergroup in SM19...
Hi Ramakrishna, I believe you don't have option to define specific user group but you can set this up for user. You need to create profile for that. Below links will help you....
View ArticleRe: I would like enable security audit log for specific usergroup in SM19...
Hi Anuj, thanks for your reply. I want to set it for users of a particular department in my organization. there around 50 users. If we put "*" in user filed, it will be enabled for all users in the...
View ArticleRe: I would like enable security audit log for specific usergroup in SM19...
There is no option to filter by user group, no. If you have some structure to your users names, and in particular if the department is encoded in the username, you can filter that way. If not, I think...
View ArticleRe: Authorization objects of a transaction assigned to a specific role
Hi Luis There is no such report or table that will give you this complete view The suggestions from others makes the assumption that you accurately maintain your SU24 data so you can join it. It is a...
View ArticleRe: I would like enable security audit log for specific usergroup in SM19...
I agree with Steve, there is no option to put filter on user group. Turning it on for all user in production should not be an issue. Regards, Anuj
View Article