cancel
Showing results for 
Search instead for 
Did you mean: 

Access Request: User Type restriction

Former Member
0 Kudos

Dear all.

I am trying to restrict the user types that are available into an Access Request.

However i am not able to find an authorization object which restricts this information.

Knid regards and thanks,

Sara.

Accepted Solutions (1)

Accepted Solutions (1)

former_member197694
Active Contributor
0 Kudos

Hello Sara,

Can you check EUP settings

SPRO>GRC>ACCESS CONTROL>USER PROVISIONING>Maintain end user personalization

Field:User type

Regards

Baithi

Former Member
0 Kudos

Thanks for your response Baithi,

However as far as i know with the EUP i cannot restrict the values into the field as far as i know. I am only able to include Default value.

Kind regards and thank you.

Sara.

former_member193066
Active Contributor
0 Kudos

Hello,

kindly specify your requirement in details.

you want restrict on what?

they should be able to choose some value and should not be able to choose other value?

what you need exactly.

Regards,

Prasant

Former Member
0 Kudos

Hi,

I want to create a Requestor User in GRC who is only able to select two types of users into the Access Request form:

- Dialog

- System

The rest of tyhe types of the users cannot be created/selected by this requestor.

Kind regards and thank you.

Sara.

alessandr0
Active Contributor
0 Kudos

Sara,

did you check auth object GRAC_USER with field UTYPE?

Regards,

Alessandro

Former Member
0 Kudos

Hi Alessandro, thank you for your reply.

In theory the roles assigned to the Requestor user are restricted to that two types of users

But i am still able to select more than these two types of users

Is this a possible OSS message to open?

Kind regards and thank you.

Sara.

Former Member
0 Kudos

hi all,

Any additional idea on this topic?

Kind regards and thank you.

Sara.

alessandr0
Active Contributor
0 Kudos

Hi Sara,

it will work with GRAC_UTYPE. The selection will show all the available user types but the end user is not allowed to request others than he is authorized.

The end user will face the following error message:

Keep me updated.

Regards,

Alessandro

Former Member
0 Kudos

Hi Alessando,

I see. Two additional comments from my side:

- I was supposing when the field is restricted to two types of users then into the access request only these two types of users are visible (not all of them)

- I am using an Access Request template and for templates seems this kind of authorization restriction is not working properly as i am able to create the access request. Sorry i have performed another testing and i am not able to create the user. So it works properly.

Kind regards and thank you.

Sara.

alessandr0
Active Contributor
0 Kudos

Hi Sara,

fully agree with you - it's not nice since they are selectable. I suggest to open an OSS so SAP can correct this behaviour.

Regards,

Alessandro

Answers (0)