on 07-28-2009 9:17 AM
Dear Gurus,
EWA alert with security issue.
Many user grant access some t-code etc. SE16,SM59,SE17,SE16 and I found users at SUIM t-code can access.
But , when I find role for t-code that I should remove.
Not found,
Please advise.
Thank .
Many user grant access some t-code etc. SE16,SM59,SE17,SE16 and I found users at SUIM t-code can access.
But , when I find role for t-code that I should remove.
Check what profiles are attached to these users via SU01. May be SAP_ALL or SAP_NEW is attached.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
can you please try this
SUIM > Roles by complex criteria or RSUSR070 to find out this.
Go to the Selection by Authorization Value.
In Object 1 put S_TCODE and hit enter.
And put SU01 in Transaction code and hit execute (clock with check) button.
I use authorization object, as you can use this to test any object.
You can also get this information directly from table, if you have access to SE16 or SE16N. Execute SE16N
Table AGR_1251
Object S_TCODE
VALUE (low) SU01
Regards,
Srinu
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You need to think on the consequences of removing the transaction from that role will have to the rest of the users that have that role assigned.
If you want to remove se16 for everyone using the role then is fine.
BTW, If the role contain transactions and objects its not a composite role... a composite role is an group of roles.
Regards
Juan
Dear Witoon Dachapitak,
Can you tell us how yu are searching for roles of t-codes. As you alreay said that you have got the user ids from SUIM then go to SU01 and give that particular user name and check under roles tab. Under roles tab open the role and check for the Tcodes
Also using SUIM you can find the same easily.....by using Roles by Complex selection crieteria
Regards,
Sharath
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
9 | |
7 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.