Announcement:
wanna exchange links? contact me at sapchatroom@gmail.com.
Posted by
Admin at
Reply from SAPAUSSEC on Jun 30 at 10:08 AM User group is an authorisation group field. Any authorisation group field left blank will not be restricted in an authority check. Your current setup will allow a user with Y to reset user group Y and blank. If you wish to restrict users with user group blank then a value will need to be assigned to all these users (say A) and a role adjusted accordingly. Therefore i
| | | ---------------Original Message--------------- From: Ashwin Sharma Sent: Tuesday, June 30, 2015 8:49 AM Subject: User Group Authorisation Bypassed When IDs Are Not Assinged to Valid User Groups Hi, You can check auth object S_USER_GRP with in the role and check if user group X has been maintained not to reset pw. you can remove that user group to enable any admin to reset the pw. You can list out the user groups, for which only limited access to be given via role e.g to Help Desk to reset dialogue users only . in such case you can maintain the auth object S_USER_GRP and restrict to reset of PW reset. Thanks | | Reply to this email to post your response. __.____._ | _.____.__ |