[sap-security] User Group Authorisation Bypassed When IDs Are Not Assinged to Valid User Groups

Posted by Admin at

Share this post:

0 Comments

Question from Geetha on May 4 at 11:50 PM

Have come across a scenario, wherein access is restricted to reset password only for users mapped to User Group X.
The system responds as expected and fails when any users with User Group Y is submitted for password reset.
But the action is successful when I try to rest password for IDs that do not have a valid user group mapping.
Meaning we could change password for any user IDs without a user group mapping.
Suggestions and solutions welcome.

- G

Reply to this email to post your response.

__.____._

Manage Settings | Unsubscribe | Create FAQ | Send Feedback

Geetha

	View this online
	Ask a new question

In the Spotlight

Earn Recognition for Your Contributions at Toolbox for IT. Gain Points for Community Achievements

_.____.__

SAP Library - Find your answers

Grab this WidgetYou can show more than 5 recent posts using this simple blogger widget by Nitesh KOthari at Wolverine Hakcs.

Click on more Feeds rss Most Popular

More ?This is SAP books Best Buy section. Click on the pics below to check more on the best SAP books.

Click on more to know more about such productsSAP Chat Room

More ?These are the Recommended products from SAP OSS Notes Team

Click on more to see more such downloadsRecommended