on 07-23-2015 6:58 AM
Hi Experts,
I have a requirement to Restrict User To Login or any trasaction In SAP CRM GUI .
I am looking for any Exit which can help me out, We are using SAP CRM EHP2 .
In adavance thanks.
Regards
Alok
You can't do this as your end-users have to be dialog to use CRM. Any user with rights to login in the webclient of CRM can always log into the SAP GUI. The only thing you can do is make sure the user has no S_TCODE authorizations, which will prevent them from executing any dialog transactions in the SAP GUI.
However keep in mind you still might need to keep SU3 authorizations(not sure about S_TCODE for SU3) to allow the user to maintain personalization data in the webclient.
Take care,
Stephen
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Alok. You just need to inactive the S_TCODE authorization object. Regards, Neha
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Alok,
This can be done by using Authorizations. Just assign the respective authorization objects to the Roles of the user.
Authorizations team will help you here.
Br,
Navn
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Alok,
Here are two approaches as we can see
1)If you dont want user to logon to CRM GUI, then deactivate (click on deactivate in logon data tab) the password on ABAP side then user wont be able to login directly from SAP
and if you are using SSO ,login/disable_password_logon.
2) If you dont want user to perform any type of transactions/activties then you need to set up Authorization objects and status profiles defined for the specific roles.
Regards,
Ravi
Hello Alok,
I understand from your query that you do not want users to access a particlaur transaction from User Interface.
1)By Authorization roles you will be able to restrict creation,display and change of transactions.
2)If you want to restrict them in WEB UI,
you will have to make changes to the respective component and view or the navigation bar
Ideally in this case, if you dont want to display the launchers for the users, we have feasibilty to hide/disable the launcher/componet in nav.bar profiles for the particualr business roles
Regads,
Ravi
Hi,
Do you mean, if a user logged on a web ui, there is a link which will start a transaction launcher to launch a transaction code using webgui or windows gui. And you don't want this to happen for some users?
I believe if it is webgui, it is still possible to control the authorization for this user id with authorization object S_TCODE. Am I right?
Hongyan
User | Count |
---|---|
5 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.