Announcement:
wanna exchange links? contact me at sapchatroom@gmail.com.
Posted by
Admin at
NEVER assign SA38/SE38 in production. There is no way of restricting the access to a couple of programs only. As mentioned before, use SE93 to assign programs to transaction codes, and then give access to the transactions instead /henrik On 1 July 2010 10:55, Sonia via sap-security < sap-security@groups.ittoolbox.com> wrote: > > Posted by Sonia (Sap Bas and > Security Design Consultant) > on Jun 30 at 8:51 PM Hi > Shiva, > > As you mentioned as SA38,then it should be a production system > > For SA38 -> S_Program > User action : SUBMIT (user will be able to execute the program) > Auth grup : you need to mention the auth gorup for the program > where to find the auth group? > SA38 -> RSUSR006 -> choose the radio button attributes-> in this section > you > will find the auth group > > you can use RSCSAUTH prg for assigning auth group to the program. > > Thank you, > Sonia > On Wed, Jun 30, 2010 at 6:25 AM, shivaprasad7 via sap-security < > sap-security@groups.ittoolbox.com> <http://groups.ittoolbox.com%3E> wrote: > > > > Posted by shivaprasad7 > > on Jun 30 at 6:43 AM Hi All, > > I just created a Role,In that Role It has Only one T-code which is SA38 > and > > I added Reports RSUSR006,RSUSR003 and RSUSR008_009_New. > > And i assigned this role a one user. > > My question is that user should execute only three Reports? > > But when i tried ,that particular User can executing other Reports also. | __.____._ Copyright © 2010 Toolbox.com and message author. Toolbox.com 4343 N. Scottsdale Road Suite 280, Scottsdale, AZ 85251 | | henrikmadsen2 SAP Security Helper
Posted helpful replies on 5 threads in a group to earn a Bronze Achievement Related Content White Papers In the Spotlight _.____.__ |