Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Is it possible to restict SQ02 to display only access.

Go to solution
former_member204733
Participant

‎06-19-2009 7:26 PM

0 Kudos

We develop queries in Dev and transport to production. In production, it would still be very helpful to be able to view the infoset defintion in SQ02 for various reasons.

Is it possibel to limit SQ02 to display only? We do not want infosets created, changed, deleted in production.

We do not see a security object to do this in the standard code. Any other options that any one has seen?

1 ACCEPTED SOLUTION

Go to solution
sdipanjan
Active Contributor

‎06-19-2009 7:58 PM

0 Kudos

Possible Man.... go to SU21 .. open the node BC_C .. go to change mode in the object S_QUERY ... and Add 03 as permitted activities.

Then go to the role through which the users are provided the access to SQ02...

Go to authorization data ... find objects and maintain the values as provided below:

S_CTS_ADMI CTS_ADMFCT=TABL

S_QUERY ACTVT=23;

(If you have added 03 as Permitted activity, then you can add it too in ACTVT for S_QUERY)..

generate profile and the user will have only display access.

Note: Don;t forget to change this field value by copying the instance of S_QUERY and deactivate the standard one.

Regards,

Dipanjan

3 REPLIES 3

Go to solution
sdipanjan
Active Contributor

‎06-19-2009 7:58 PM

0 Kudos

Possible Man.... go to SU21 .. open the node BC_C .. go to change mode in the object S_QUERY ... and Add 03 as permitted activities.

Then go to the role through which the users are provided the access to SQ02...

Go to authorization data ... find objects and maintain the values as provided below:

S_CTS_ADMI CTS_ADMFCT=TABL

S_QUERY ACTVT=23;

(If you have added 03 as Permitted activity, then you can add it too in ACTVT for S_QUERY)..

generate profile and the user will have only display access.

Note: Don;t forget to change this field value by copying the instance of S_QUERY and deactivate the standard one.

Regards,

Dipanjan

Go to solution
former_member701183
Active Participant

‎06-20-2009 2:43 AM

0 Kudos

Hi,

This can be done by getting into su24->give transaction name->execute->Click on the transaction and modify the value of s_query authorization object. Find the role which contains the transaction and then modify the auth objects as mentioned already by Dipanjan in Dev system. Generate the role and carry it to Production. Else you may create a new role for this purpose. But since you are doing this change to s24 please do remember that in future if you add this txn to a role default vale 03 will me maintained. Please let me know if any issue.

Regards

Aveek.

Go to solution
former_member204733
Participant

‎07-09-2009 12:48 AM

0 Kudos

Thank you both. Helpful answers. Unfortunately I haven't gotten the security team to look at doing it yet. Maybe some time soon.