Solved: Transaction Variant & Security

Former Member · ‎11-18-2008

I created transaction variant 'ZME52N' from origianl transaction 'ME52N'.

This variant is to be used by a specific group of users. Those users must not execute the original transaction 'ME52N'.

Could someone tell me how to do this?

Thank you,

Nizar

former_member181995 · ‎11-18-2008

Please approach to basis person,they will surly will able to do this.

former_member181995 · ‎11-18-2008

Please approach to basis person,they will surly will able to do this.

Former Member · ‎11-18-2008

Basis has no answer! Does any one know if the variant name is visible anywhere in the transaction and if yes, where?

Regards,

Nizar`

Former Member · ‎11-19-2008

ask your security person to build a roile based on these transaction codes, and provide only theh Z one to the users, not the standard one

Former Member · ‎11-19-2008

Hi Nizar,

U just find the correct User-exit or BADI and write the code like this..

if sy-uname ='''''' and

write the code for authoirzation check.

screen-input = 0.

else.

sreen-input = 1.

endif.

Thanks,

srii..

former_member181995 · ‎11-19-2008

>


> Hi Nizar,
> 
> U just find the correct User-exit or BADI and write the code like this..
> 
> 
> if sy-uname ='''''' and 
> write the code for authoirzation check.
> screen-input = 0.
> else.
> sreen-input = 1.
> endif.
> 
> Thanks,
> srii..

This is the Ugly why of coding.

Imagine how many user name we suppose give in if condition?And what if in future some new user id has been created?every time we cannot ecpect to go in user-exit and badi to do these changes.

Former Member · ‎11-19-2008

HI,

For authorization related Issues contact your Basis Administrator, they will create the User profiles and roles.

Thanks,

Sriram Ponna.

former_member181995 · ‎11-19-2008

Any Different language we (Me and MxG) used?

Former Member · ‎11-19-2008

What do you mean?

Former Member · ‎11-24-2008

I agry with Amith but some time we have perticular user only so that its not a big problem to change the user or adding the user

And if u want to in a right way please see the table:AGR_USERS

Thanks,

srriii..

Former Member · ‎11-19-2008

Hi,

there are few thing which you can do.

1. if you want restrict the access to the perticular user, then Basis gut can set the profile.

2. Write user-exit or badi and maintain user names in Ztable who can access.

3. when you create varient, there is one option called User-specific, Tick this check box.

but first option is more reliable.

you can see all variants saved when you click on varient icon.

Hope this may help you.

Thanks & regards

Former Member · ‎11-19-2008

Thank you all for your good suggestions.

The issue still remains that the user who has access to ZME52N must also have access to ME52N (at least at the security level). If we deny him access to ME52N, and he runs ZME52N, SAP message is triggered with 'YOU ARE NOT AUTHORIZED TO RUN ME52N'. And if we give him access to ME52N he/she can enter ME52N directly....which obviously defeats the purpose of the transaction variant concept of creating a variant to restric access to certain fields on the screen.

It would be nice if we can see the variant t-code instead of the original t-code in a BApi or an exit.

ANY SUGGESTIONS?

Regards,

Nizar