Skip to Content

Access Control in WEBGUI

Apr 06, 2017 at 06:01 AM


avatar image
Former Member

We have implemented Enterprise portal on the internet. any authenticated users are able to type http:\\\sap\bc\gui\sap\bc\its\webgui to access the webgui page. at this page, user can attempt to access almost all tcodes from the SAP menu. Please advise how to block this from internet users.

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

2 Answers

Cristiano Hansen
Apr 06, 2017 at 11:21 AM

Dear Eng,

The WEBGUI (SAPGUI for HTML) is one of three GUI types (the other two are SAPGUI for Windows and SAPGUI for Java).

The same security principle for the other GUIs applies to WEBGUI: roles and profiles defined for each user ID via PFCG.

You need to contact your security team to verify whether there are users with excessive authorizations. They can also use the Security Audit Log to check whether a specific user ID is trying to access transactions that are not related to his/her profile.

Kind regards,


10 |10000 characters needed characters left characters exceeded
Oisin ONidh
Apr 06, 2017 at 04:39 PM

Hi Eng,

another method would be to create transaction iViews in the Portal - so that an End User logged onto the Portal has only access to specific transaction pool.

See also the following link which is related to Cris's post:

How to limit access to an ITS service to specific users?



10 |10000 characters needed characters left characters exceeded