Skip to Content
author's profile photo Former Member
Former Member

Maximum number of transactions

Hello experts !

I have one question regarding transactions : How many transactions can we add in one role ? is there a limit ?

I have a display role with a * and i want instead to add all the transactions manually , except those one that are defined as Critical (814) . Total number of transactions in our system is around 80000. I will use a cat script to add these transactions in the role . I am quite sure allthough that not all Transactions are used, but this a solution of a minimum risk , succeding the expected results in a short amount of time .

Thanks for your help 😊

david

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

2 Answers

  • Best Answer
    Posted on Jan 14, 2009 at 04:17 PM

    Hi David

    Why don't you take a different approach. Analyse the the transaction usage in ST03n - switiching to expert mode will allow you to see wha'ts has been run in the past by month, week, day.

    Export the list of used transactions to a spreadsheet and do a comparision using a vlookup formula between against your list of 80,000 and the list extracted from ST03n - that way you get only the transactions used. I know that what you want a quick solution but does it really make sense including redundant transactions in your role. Do you intend to test these redundant transactions? - do you know what data the redundant transactions give access to? In my experience, auditors have made recommendations for all redundant transactions to be removed.

    But to answer your question

    How many transactions can we add in one role ? is there a limit ?

    No I dont believe there is but I have never tried to find out 😊

    Regards

    Charmaine

    Add a comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Jan 16, 2009 at 01:30 PM

    Hello Julius,

    I was going through this thread and, out of interest, i wonder, as per the thread discussion, there is no cap on the maximum number of roles but a cap on the profiles i.e 312....

    My question is, what would happen if there are more than 312 profiles for a user because of the roles assigned?

    1. Would the system throw an exception (pop up dialog), or

    2. would it just not take into consideration, the authorizations from the profiles exceeding the limit

    Point number 2 came to my mind because an year ago i was working on 3.1I Security administration (using Profiles[SU02] instead of roles [PFCG]) and i cam accross a case where a user has authorization for a particular object but he kept getting an error for that object. On checking, i found in SU56 buffer for the user that, the system was truncating a large number of authorizations, obviously from profiles assigned over the limit.

    So, does a trucate happen or an exception.

    Regards,

    Prashant

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.