Skip to Content
avatar image
Former Member

Users with same role but cannot acess/see the restrcited page

Hi, SDN Fellows.

I have a requirement as stated below:

Said, I have Role A, which have WorksetA , that contains Page1, Page2,Page3.

The requirement is: User A was assigned to RoleA, he can see all the pages in the role hierarchy.

But User B was assigned to RoleA too, but I want to restricted this user to see Page3.

In this, case, how should I manage that? Can we set some authorization from the page? If yes, is it going to be troublesome for the system admin to maintain that?

Thanks.

Kent

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Best Answer
    Aug 22, 2007 at 02:00 PM

    Hi Kent,

    > Can we set some authorization from the page?

    No, you can't. Permissions ar set on the unique object within the PCD, this is the role in your case.

    The standard scenario is to create two roles A and B, where user A is assigned to both roles and user B only to role B. Role B contains WorksetA and Page3, whereas role A contains WorksetA and Pages 1 & 2 -- an both roles are merged.

    By this, you have one navigation structure but user B only sees page3, whereas user A sees all three pages under the workset entry (from the navigational point of view).

    See http://help.sap.com/saphelp_nw04s/helpdata/en/53/89503ede925441e10000000a114084/frameset.htm for details.

    Hope it helps

    Detlev

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Detlev,

      I analyze this approach before. Just not sure that I can have another approach without splitting the role.

      Now, I think it will be a better idea to split it into 2 roles like you suggested.

      I will implement it and analyze again.

      Thanks,

      Kent

  • avatar image
    Former Member
    Aug 22, 2007 at 02:01 PM

    Hi,

    What you can do is go to system admin> permissions> locate your pages there and open the permissions for each page and add user A to page A permissions, page B & page C permissions as well.Also do same for user B but do not add it for page three permissions.

    Hope this will help,

    Regards,

    Ameya

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Ameya,

      I thought about this approach too, but the only concern is it may be more difficult to maintain the permission in page level, compare to role level, especially all our backend security roles are mapped into portal roles for user authorization to access backend data/RFCs. If I choose this approach,we will have to re-work the security strategy.

      Anyway, thanks for your suggestions.

      Kent