Skip to Content
avatar image
Former Member

HU02 - restrict delete option for user

Hello

Does anyone know, from an authorization perspective, if I can restrict a user who has HU02 tcode, and btw only HU02 tcode exists in the role, from deleting a handling unit.

I've unchecked both the options Create & Delete in the role yet the user is able to delete units.

I ran a trace to see if there are any objects but all I saw in the trace was bunch of other tcodes that were run in the back ground.

thanks

Raj

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • avatar image
    Former Member
    Nov 13, 2008 at 04:22 PM

    Hi Raj,

    I think the best way is to look at the Authorization Objects Check/Maintained for HU02 tcode.

    Also go to SE93 and check for any additional tcodes being called from HU02.

    Go to SU24 and plug in HU02 and the called tcodes and find the Check/Maintained Auth objects against the tcodes.

    Identify the Authobjects responsible for Handling units.

    Once found, Try to restrict the user from Deletion of Handling Unitis in tha authorization values for the respective Auth objects.

    If still the User is able to delete, switch on a trace on the user and check the Authorization trace.

    then you may also need to examine the code behind the tcode and may be talk with the funtional folks dealing with Configuration options.

    Hope this helps.

    Regards,

    Kiran Kandepalli

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Former Member

      I took a quick look as well, and I think you are correct. (although note that it was a sandbox without data!)

      I could not see any obvious checks, and the function for creating subsequent goods movements exposes a parameter via which checks can be disabled, which they by default are.

      But, there is at least one enhancement point via which your developer can try to activate checks again by creating a switch.

      Good luck,

      Julius