Single quotation marks in values for S_TCODE
Hi There, I have seen the following values for the field TCD of the authorization object S_TCODE (Transaction Code Check at Transaction Start): ' ''FDT_SHOW_DB' Does anyone know what those values mean...
View ArticleRestrict users from creating PO
Hi Experts, Currently in our system, end users can create PR and PO.I want to restrict them to creation of PR only and not PO. How do I do that? Thanks and Regards,Sayan
View ArticleAdding role SAP_AUDITOR to start menue?
Hello, Can you help me please.I not fimilar with security and rights. I have following quesition:What do I have to do, that I have Role SAP_AUDITOR available in SAP standard menue? I want to do this...
View ArticleSYS access to the ORACLE database. Table with Sensitive/Production data
Having SYS access to the back end Oracle database in SAP can be deemed critical. However, due to the vast number of 25000+ tables in the database it might be impossible to find exactly where the...
View ArticleSecurity upgrade from 4.6B to ECC6.0
Hello Experts, I am going to perform security upgrade from 4.6B to ECC6.0. Below is my analysis in the system 4.6B.Aaround 5000 Manual profiles and 2700 Roles are there in the system. Also 3000 custom...
View ArticleClik here to view.
SSO Configuration between ABAP Stack and Windows Active Directory
Hi All, We are trying to setup SSO in SAP on Linux and Windows Active Directory landscape, which should be a kerberos based authentication. SAP Server on Linux(RHEL 5) : host1Windows Domain Server...
View ArticleAbout Roles
Parent Roles/Derived Roles : The concept of parent and derived roles was introduced by SAP to simplify role administration tasks. Its specially helpful while mapping security for large enterprises...
View ArticleRestrict OM relationship for certain HR users
Dear experts, We have certain types of positions (S object) which for succession management are considered super-sensitive. Some of our local HR users can display these positions such as holder (A-008...
View ArticleAGR_TCODES Table content
Dear all, I am currently working on authorization issues and in this context I am having difficulties understanding the AGR_TCODES content. Could anyone tell me what is the use of the following...
View ArticleAGR_USERS table content
Dear all, I am currently working on authorization issues and in this context I am trying to understand how the AGR_USERS table is structured. I am having trouble understanding what is the use of the...
View ArticlePP01 - No authorization to delimit object
When I want to delimit an object of an organizational unit within t-code PP01 there comes the message: No authorization to delimit object 1 O 12345678 I traced my user but nothin in the trace. My...
View ArticleABAP_Runtime_Error
Dear experts, i am getting below ABAP dump when i am trying to execute RRMX tcode to open Analyzer. Please help me to solve the issue. Category ABAP Programming ErrorRuntime Errors...
View ArticleSSO using spnego set up but not working for an Enterprise Web Service
Hello, I am looking for some guidance. I have a function module that is exposed as a web service. I am trying to be able to access the web service with sso so the user does not need to logon. Systems...
View ArticlePC00_M40_CEDT -tcode authorization Problem
Hi Experts, We have authorization issue with this PC00_M40_CEDT tcode. when We have given this tcode , it is not calling any auth objects. but the user is unable to get the authorization. It is...
View ArticleRestrict Billing Block
Hi, I want to restrict Billing Block with VA01 on CR (Credit Memo Request). I have read some messages about it, but there is still one question. I would like to test if the authrisation object...
View ArticleMass deletion of roles from users
I want to delete all roles from locked users. Is there a specific transaction for this instead of SU10? In SU10 one has to enter the roles to remove.
View ArticleSOST - Message in node cannot be processed due to authorization problem
Hi Gurus , In our SRM system , in the transaction code SOST , we have got logs for a few transmission requests which have failed .This shows the error message 'Message in node cannot be processed due...
View ArticleMaintaining different values for Accounting Type (KOART)
Hi experts, I have several accounting tcodes such as FBV0, FB03, FB08, FV65,FV60 in one parent role.FV60, FV65 are added to this role as FBV0 is checking internally for this authorization object. All...
View ArticleInformation on Data loss protection
Hello Everyone we are planning to implement DLP (Data Loss Protection) or Extrusion Prevention in our IT setup.We are in discussion with couple of vendors and one of them is Websense. So far we could...
View ArticleSystem user restriction without speacil password restriction
Hi All - is there any way to restrict a system user without speacil password restriction.. we are using control M tool to trigger job in SAP and there is a system user created in SAP for this purpose....
View Article