https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050997#M722318 <HTML><HEAD></HEAD><BODY><P>Hi Ravi,</P><P></P><P>SAP security is additive &amp; doesn't support "everything except nnnn" unfortunately.</P><P>The way you have done it is the only way.</P></BODY></HTML> Thu, 15 Nov 2007 18:08:42 GMT Former Member 2007-11-15T18:08:42Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050994#M722315 <HTML><HEAD></HEAD><BODY><P>Hi</P><P></P><P>I have a object S_WFAR_OBJ. This object has a auth field which is object type (OAOBJEK). I would like users to have access to all except a certain object type.</P><P></P><P>Is there a way this can be restricted?</P><P></P><P>- ravi</P></BODY></HTML> Thu, 15 Nov 2007 15:43:33 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050994#M722315 Former Member 2007-11-15T15:43:33Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050995#M722316 <HTML><HEAD></HEAD><BODY><P>If it allows from and to then you could create a range that contains everything but the single object type.</P></BODY></HTML> Thu, 15 Nov 2007 16:30:47 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050995#M722316 Former Member 2007-11-15T16:30:47Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050996#M722317 <HTML><HEAD></HEAD><BODY><P>The entries are alphabets. So I cannot enter a range.</P><P>I did wildcard stuff like (A<STRONG>, B</STRONG>) to ensure that it would work with everything except the one which should be excluded. However what I want is something like</P><P>ALL EXCEPT a certain object type.</P><P></P><P>Is there a better way of doing it?</P><P></P><P>any ideas?</P><P></P><P>Ravi</P></BODY></HTML> Thu, 15 Nov 2007 17:26:40 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050996#M722317 Former Member 2007-11-15T17:26:40Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050997#M722318 <HTML><HEAD></HEAD><BODY><P>Hi Ravi,</P><P></P><P>SAP security is additive &amp; doesn't support "everything except nnnn" unfortunately.</P><P>The way you have done it is the only way.</P></BODY></HTML> Thu, 15 Nov 2007 18:08:42 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050997#M722318 Former Member 2007-11-15T18:08:42Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050998#M722319 <HTML><HEAD></HEAD><BODY><P>Hi Ravi,</P><P></P><P>Like Alex rightly said, in SAP we cant configure to deny access to a object, we can only give access to an object. <SPAN __jive_emoticon_name="happy"></SPAN></P><P></P><P>Regarding your query, cant you just select all objects types under S_WFAR_OBJ, and just de-select the object you dont want to give access to ?</P></BODY></HTML> Thu, 15 Nov 2007 20:45:10 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-field-restriction/m-p/3050998#M722319 Former Member 2007-11-15T20:45:10Z