hi,

I think wahtever you want its all supported by PFCG transaction. You can create role add different users and can give specified access creat, read, write, delete, change, etc access at document different levels e.g DIR, Statuses, authorisation grps, original application access, object links etc.

I hope using this will serve your need.

Regards,

Pramod

award points if its useful for u

hi,

tryu this,

Authorization object C_DRAW_BGR can be used to restrict access to individual documents. It works like a simple on/off switch. If the check of object C_DRAW_BGR is fine, the user's authorization can be further restricted by checking C_DRAW_TCD (check only based on the document type) or C_DRAW_TCS (check of the combination of document type and status).

• At the fifth level there is a BADI called DOCUMENT_AUTH01, which you can use to design your own authority check.

ben

Venkat,

Your question is not acceptable from an audit perspective. At any point of time regulations such as

SOX doesnt allow anonymous users in the system which means you have to create the users on a need by need basis. If you are interested, try to automate the user creation process. For example you can build an excel sheet / sap transaction with connection to the underlying objects. So what you need to do is to just type in the name and make few choices, the system should create a user id automatically with all the privileges.

Sojan