https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805673#M1587565 <HTML><HEAD></HEAD><BODY><P>Hi Lakshmi,</P><P></P><P>Regarding your question, you need to check which roles has assined as V* under S_TCODE , you need to remove VK11 from that and you need to give the range accordingly.</P><P></P><P>Hope this information helps.</P><P></P><P>thanks!</P><P></P><P>Regards,</P><P>Pavithra.B</P></BODY></HTML> Tue, 19 Apr 2011 07:18:13 GMT Former Member 2011-04-19T07:18:13Z https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805670#M1587562 <HTML><HEAD></HEAD><BODY><P>Is it possible to control access at the transaction code level? Ex: Controlling access to VK11. The system already has several roles with access privileges to VK11. As a new requirement if I have to control access to a very limited set of users/roles then what is the best approach? Do I have to clean up all the existing roles or this can be handled in a simpler way?</P></BODY></HTML> Tue, 05 Apr 2011 23:53:38 GMT https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805670#M1587562 Former Member 2011-04-05T23:53:38Z https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805671#M1587563 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>authorization object S_TCODE allows you to control access to transaction. So if there is any role which should not have access to same aprticular transaction then you have to update that role. In other words if there is a mess then you need to clean it up.</P><P></P><P>Cheers</P></BODY></HTML> Wed, 06 Apr 2011 00:09:28 GMT https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805671#M1587563 mvoros 2011-04-06T00:09:28Z https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805672#M1587564 <HTML><HEAD></HEAD><BODY><P>Thank you Martin!</P></BODY></HTML> Wed, 06 Apr 2011 20:04:01 GMT https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805672#M1587564 Former Member 2011-04-06T20:04:01Z https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805673#M1587565 <HTML><HEAD></HEAD><BODY><P>Hi Lakshmi,</P><P></P><P>Regarding your question, you need to check which roles has assined as V* under S_TCODE , you need to remove VK11 from that and you need to give the range accordingly.</P><P></P><P>Hope this information helps.</P><P></P><P>thanks!</P><P></P><P>Regards,</P><P>Pavithra.B</P></BODY></HTML> Tue, 19 Apr 2011 07:18:13 GMT https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805673#M1587565 Former Member 2011-04-19T07:18:13Z https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805674#M1587566 <HTML><HEAD></HEAD><BODY><P>...just a thought: copy VK11 to (for instance) ZVK11 in se93. Lock vk11 in sm01. Create a role only with s_tcode=zvk11. Assign that role to that limited number of users. b.rgds, Bernhard</P></BODY></HTML> Tue, 19 Apr 2011 07:29:30 GMT https://community.sap.com/t5/application-development-and-automation-discussions/controlling-access-at-a-transaction-code-level/m-p/7805674#M1587566 Bernhard_SAP 2011-04-19T07:29:30Z