Restriction authorization

Dear Gurus,

Users in our production system have access to t-code se38,se11.

Now we want to remove these authorizations,but these authorizations are provided to the users via diffrent roles and its difficult to track these authorizations.

I want to know that is it possible to create a restriction authorization where we can define the t-code value as 'not equal' and restrict the desired authorization

Please update

Thanks and regards

Tushar