Announcement:
wanna exchange links? contact me at sapchatroom@gmail.com.
Posted by
Admin at
Reply from SAPAUSSEC on Jun 30 at 10:08 AM User group is an authorisation group field.
Any authorisation group field left blank will not be restricted in an
authority check. Your current setup will allow a user with Y to reset
user group Y and blank.
If you wish to restrict users with user group blank then a value will
need to be assigned to all these users (say A) and a role adjusted
accordingly.
Therefore i
| | | ---------------Original Message---------------
From: Ashwin Sharma
Sent: Tuesday, June 30, 2015 8:49 AM
Subject: User Group Authorisation Bypassed When IDs Are Not Assinged to Valid User Groups
Hi,
You can check auth object S_USER_GRP with in the role and check if user
group X has been maintained not to reset pw. you can remove that user group
to enable any admin to reset the pw.
You can list out the user groups, for which only limited access to be given
via role e.g to Help Desk to reset dialogue users only . in such case you
can maintain the auth object S_USER_GRP and restrict to reset of PW reset.
Thanks |
| Reply to this email to post your response. __.____._ |   _.____.__ |
