cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Users with same role but cannot acess/see the restrcited page

Go to solution
Former Member

on ‎08-22-2007 2:28 PM

0 Kudos

Hi, SDN Fellows.

I have a requirement as stated below:

Said, I have Role A, which have WorksetA , that contains Page1, Page2,Page3.

The requirement is: User A was assigned to RoleA, he can see all the pages in the role hierarchy.

But User B was assigned to RoleA too, but I want to restricted this user to see Page3.

In this, case, how should I manage that? Can we set some authorization from the page? If yes, is it going to be troublesome for the system admin to maintain that?

Thanks.

Kent

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

detlev_beutner
Active Contributor
‎08-22-2007 3:00 PM
0 Kudos

Hi Kent,

> Can we set some authorization from the page?

No, you can't. Permissions ar set on the unique object within the PCD, this is the role in your case.

The standard scenario is to create two roles A and B, where user A is assigned to both roles and user B only to role B. Role B contains WorksetA and Page3, whereas role A contains WorksetA and Pages 1 & 2 -- an both roles are merged.

By this, you have one navigation structure but user B only sees page3, whereas user A sees all three pages under the workset entry (from the navigational point of view).

See http://help.sap.com/saphelp_nw04s/helpdata/en/53/89503ede925441e10000000a114084/frameset.htm for details.

Hope it helps

Detlev

Show replies
Show replies
Former Member
‎08-22-2007 3:44 PM
0 Kudos

Detlev,

I analyze this approach before. Just not sure that I can have another approach without splitting the role.

Now, I think it will be a better idea to split it into 2 roles like you suggested.

I will implement it and analyze again.

Thanks,

Kent

Answers (1)

Answers (1)

former_member188632
Active Contributor
‎08-22-2007 3:01 PM
0 Kudos

Hi,

What you can do is go to system admin> permissions> locate your pages there and open the permissions for each page and add user A to page A permissions, page B & page C permissions as well.Also do same for user B but do not add it for page three permissions.

Hope this will help,

Regards,

Ameya

Show replies
Show replies
detlev_beutner
Active Contributor
‎08-22-2007 3:06 PM
0 Kudos

Hi Ameya,

As said in my first answer, you cannot set up this scenario by permissions, as these are only set on the unique objects, not on the underlying objects of them!

Hope it helps

Detlev

former_member188632
Active Contributor
‎08-22-2007 3:31 PM
0 Kudos

Hi,

Actually i saw your answer after posting,anyways i actually i was tried this on my portal first it worked fine but it was showing all the pages in detail navigation but not in TLN, so i thought this is gonna work so i posted this, anyways now i have came to know that this thing doesnt works, another question is if this is not working, then why by detail navigation window for user A is showing all three pages and for user B only two pages.

Regards,

Ameya

Former Member
‎08-22-2007 3:48 PM
0 Kudos

Ameya,

I thought about this approach too, but the only concern is it may be more difficult to maintain the permission in page level, compare to role level, especially all our backend security roles are mapped into portal roles for user authorization to access backend data/RFCs. If I choose this approach,we will have to re-work the security strategy.

Anyway, thanks for your suggestions.

Kent

Ask a Question