08-09-2007 3:02 PM
Hi,
How can I prevent some users from assigning roles via SU01?
thanks,
- ferudun
08-09-2007 3:04 PM
08-09-2007 3:04 PM
08-09-2007 3:08 PM
Actually if you don't give them S_USER_GRP then they will not be able to use SU01 at all. Remove activity 22 from that auth object and they will be able to everything else except assign roles.
08-09-2007 6:16 PM
Ben and JC are right, you need to restrict the object S_USER_GRP. Look at the Roles the users have and use SUIM to analyze which Roles are giving them Object S_USER_GRP, then you will know which Roles to change.
Regards
Ashley