Dear Gurus,
I have just created a role containing the transactions: SE01 and SE09. This role gives display/release authorization for users while they work on change requests/tasks.
The issue: There are other roles in the Production System which contain the authorization object S_TRANSPRT which in turn have create/delete authorization. Even though they are not meant for giving access to SE01 or SE09, they are required by the functional teams for carrying out changes to customization data.
Due to this reason, a user account containing the role that I have created and the ones which I just described can not be assigned in a single user account since users will get create/change authorization.
Is there any way through which we can tag the authorizations that are given in a role to be limited to the tcodes present in the role itself. In other words, is there a way to prevent other roles overriding the restricted access given through display only roles. I' am looking at a solution for the above situation but nothing is coming up.
Thanks a lot in advance for your suggestions .....
Best Regards,
Shashi kanth Gowda