https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107098#M1361493 <HTML><HEAD></HEAD><BODY><P>This message was moderated.</P></BODY></HTML> Thu, 27 Aug 2009 13:18:00 GMT Former Member 2009-08-27T13:18:00Z https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107094#M1361489 <HTML><HEAD></HEAD><BODY><P>Dear Gurus,</P><P></P><P>Users in our production system have access to t-code se38,se11.</P><P>Now we want to remove these authorizations,but these authorizations are provided to the users via diffrent roles and its difficult to track these authorizations.</P><P></P><P>I want to know that is it possible to create a restriction authorization where we can define the t-code value as 'not equal' and restrict the desired authorization</P><P></P><P>Please update</P><P>Thanks and regards</P><P>Tushar</P></BODY></HTML> Thu, 27 Aug 2009 09:15:58 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107094#M1361489 former_member747244 2009-08-27T09:15:58Z https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107095#M1361490 <HTML><HEAD></HEAD><BODY><P>if the transaction authorization given by custome role you have to find that role and change accordingly, there is no short cut.</P></BODY></HTML> Thu, 27 Aug 2009 09:29:24 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107095#M1361490 Former Member 2009-08-27T09:29:24Z https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107096#M1361491 <HTML><HEAD></HEAD><BODY><P>I agree with Netweaver Expert.</P><P></P><P>If you are finding it difficult to identify those roles then I suggest that someone on your security team gets training ASAP as it it a very, very basic task to ID roles with those authorisations. You can do it in SUIM or via table AGR_1251 in less than 10 minutes.</P></BODY></HTML> Thu, 27 Aug 2009 09:45:11 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107096#M1361491 Former Member 2009-08-27T09:45:11Z https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107097#M1361492 <HTML><HEAD></HEAD><BODY><P>This message was moderated.</P></BODY></HTML> Thu, 27 Aug 2009 10:50:12 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107097#M1361492 Former Member 2009-08-27T10:50:12Z https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107098#M1361493 <HTML><HEAD></HEAD><BODY><P>This message was moderated.</P></BODY></HTML> Thu, 27 Aug 2009 13:18:00 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107098#M1361493 Former Member 2009-08-27T13:18:00Z https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107099#M1361494 <HTML><HEAD></HEAD><BODY><P>This message was moderated.</P></BODY></HTML> Thu, 27 Aug 2009 13:20:38 GMT https://community.sap.com/t5/application-development-and-automation-discussions/restriction-authorization/m-p/6107099#M1361494 Former Member 2009-08-27T13:20:38Z