06-18-2010 4:01 PM
06-18-2010 4:12 PM
Hi Vaishali,
Below are the authorization object through which you can restrict the access of this tcode:
PLOG
P_ORGIN
P_PCLX
P_PERNR
Check for the field" AUTHC" on above objects and restrict them accordingly. Also easier way is to give full access of this tcode to a role and assign it to the testId. Now run a trace on the testID and find out which auth. objects are getting checked while you are performing deletion activity.
06-18-2010 6:03 PM
09-28-2010 10:24 AM
Franklin,
sorry to say this: but the OP would find it useful to know how to check the documentation on the authorization objects. rather than copying what exists in SAP,i think it would help if you guide the on the usage of SU24 (or) auth_switch_objects
10-04-2010 8:48 AM
Hi Vaishali,
The above Tcode will provide access to different infotype, you need to verity which are the info type you need to have access, you may get info from HR consultant. The Tcode will check for standard object check P_ORGIN, you can restrict the athoirsation only to display using AUTH = M,R. You may need P_ORGXX if your system is enabled for extended auth check.
If yes above AUTH values should be added with same info type and other customizing values.
Regards
Arul
06-18-2010 8:56 PM
Vaish,
You can restrict on user group
u need to chk the user group....go o own data --> Parameters --> UGR
or.
Make the user unable to see list of actions in Pa40 (i.e only certain actions he need to see). if this not accomplished thru security then try to Configuration.
Thanks,
Sri
09-28-2010 9:34 AM
Hello Vaishali ,
You can create 2 instances of Authorization objects P_ORGINCON and P_ORGXXCON
In the first instance only grant access with R, M for field AUTHC with INFTY infotype 0000 (actions) with subtype *
And in the second instance you can provide the access for all the infotypes as per your requirement.