Community
Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

tcode PA30

Former Member

‎2008 Oct 09 10:30 AM

0 Likes
2,157

Is there any method to delimit IT105 for no. of users in one go .

18 REPLIES 18
Read only

JPReyes
Active Contributor

‎2008 Oct 09 10:38 AM

0 Likes
2,046

This look like a interview question to me... I'm giving you the benefit of the doubt as you just joined, but please give more information regarding your problem and scenario.

Also Read the "Rules of Engagement" in detail

Regards

Juan

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 10:48 AM

0 Likes
2,046

I guess this question should go in SECURITY

Juan,

Actually I had to delimit many users for IT105 , I did it one by one but I just want to know if there is any method to do that, for future .

thanks

kapil

Read only

JPReyes
Active Contributor
In response to JPReyes

‎2008 Oct 09 10:52 AM

0 Likes
2,046

I don't think thats possible.

I'll move the thread to Security to see if you get a better answer.

Regards

Juan

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 10:58 AM

0 Likes
2,046

k

Read only

jurjen_heeck
Active Contributor
In response to JPReyes

‎2008 Oct 09 11:01 AM

0 Likes
2,046

> Actually I had to delimit many users for IT105 , I did it one by one but I just want to know if there is any method to do that, for future .

Please elaborate a bit more on what it is you're trying to accomplish. User rights are given through roles (and profiles). If you're looking for a way to mass-maintain roles we have to dissapoint you. User mass-maintenance is done via SU10, or if you're trying to take one role away from many users and you're not using central user administration you can go to PFCG and edit the 'users' tab of the role itself.

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 11:04 AM

0 Likes
2,046

It's not a role .

PA30 tcode is used to maintain some HR data , in that I have to delimit a infotype 105 for no. of users.

thanks

kapil

Read only

jurjen_heeck
Active Contributor
In response to JPReyes

‎2008 Oct 09 11:52 AM

0 Likes
2,046

> It's not a role .

>

>

> PA30 tcode is used to maintain some HR data , in that I have to delimit a infotype 105 for no. of users.

So you have to amend some roles containg PA30? There's no way to delimit infotypes directly for users.

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 1:13 PM

0 Likes
2,046

Role is not in picture.Actually I have to execute pa30 then put users position(assignd to user) put communication type and click on cng button and put expiry date in past.

this process I had done no. of times for no. of users.

Is there any other way to do this?

thanks

kapil

Read only

jurjen_heeck
Active Contributor
In response to JPReyes

‎2008 Oct 09 2:17 PM

0 Likes
2,046

Ah, There's a big misunderstanding here. Since you talked about "delimiting" everybody assumed this is a security question. At least I thought you wanted to limit the number of SAP-users being able to change IT 0105.

It should never have been moved here as this turns out to be a HR functional question. You want to mass-maintain IT 0105.

I'm afraid I can not help you with that.

Sorry about the confusion

Jurjen

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 2:39 PM

0 Likes
2,046

Is this some manual step in a self-registration process?

Read only

former_member74904
Contributor
In response to JPReyes

‎2008 Oct 09 2:51 PM

0 Likes
2,046

this is not security related, but I think making a recording in LSMW (depending on the amount of PERNRs you need to change) will do nicely for your requirement?

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 3:31 PM

0 Likes
2,046

Kapil,

Your question is greatly appreceiated. Your question is certainly realted to Security. Now infotype 0105 the commucation one is critical and is needed for every user to be attached to.

If you can revist the of the Structural auths on your system, you can perhaps accomplish your question.

I cannot but say --> that on this forum there are great many good points -- for instance no body is bothered of points..but there are very many corrections to be made for example :

" I saw a remark: this is an interview question ...but I give benefit o f doubt !" This is a a public forum focussed on educating folks sharing knowledge irrespective of its an interview question or not ! People can answer if they want to , resist from answering if they want to ( as to many of my questions !! )

The suggestion I have is ' moderators need to be monitored , their association is as modertor needs tobe limited by time .say one year max .."

So kapil Keep posting ..keep writing ..unlearned folks like me learn !

Read only

former_member74904
Contributor
In response to JPReyes

‎2008 Oct 09 4:15 PM

0 Likes
2,046

george,

I'm curious as to how you came to conclude that this is necessarily related to security? as far as I can tell kapil needs to delimit a number of IT0105 records. this can be either an emailaddress or a user ID (or custom subtypes). in the case of a user ID, you could be right in assuming this has something to do with structural authorizations, but who knows...

let me add some fuel to the fire by saying I don't think much of one sentenced-questions where others should guess what the topic is actually about.

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 4:43 PM

0 Likes
2,046

> 

> Kapil,
> Your question is greatly appreceiated. Your question is certainly realted to Security. Now infotype 0105 the commucation one  is  critical and is needed for every user to be attached to.
> 
> If you can revist the  of the Structural auths  on your system, you can perhaps accomplish your question.
> 
> I cannot but say --> that on this forum there are great many good points -- for instance no body is bothered of points..but there are very many corrections to be made for example :
> 
> " I saw a remark: this is an interview question ...but I give benefit o f doubt !" This is a a public forum focussed on educating folks sharing knowledge irrespective of its an interview question or not ! People can answer if they want to , resist from answering if they want to ( as to many of my questions !! ) 
> 
> The suggestion I have is ' moderators need to be  monitored , their association is as modertor needs tobe limited by time .say one year max .."
> 
> So kapil Keep posting ..keep writing ..unlearned folks like me learn !

I say its a grey area, with us security maintains all IT105 and subtypes.

Mass delimiting can only be accomplished by SECATT. Why that many delimitations? I only have to delimit 105s if the person have multiple PERNR due to many jobs and one the positions is termed 99999999.

If you can provide us more info on the purpose of the delimitation, we can give you better answers.

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 5:01 PM

0 Likes
2,046

I highly appreciate all your help.

Actually with us security people only maintain infotype and subtypes.

So what exactly my question is?

To all users some position is assigned .Now by putting this position no. in pa30 screen and infotype which you want to maintain. Click on chng button, now screen moves to another screen where you can put dates til when this infotype ll be valid and save the entry.

So this process I had repeated no. of times.

Is there any short cut method for this?????

Thanks

kapil

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 6:41 PM

0 Likes
2,046

> 

> 
> Is there any short cut method for this?????
> 
> Thanks
> kapil

Yes, if you know how to create SECATT scripts.

Read only

Former Member
In response to JPReyes

‎2008 Oct 09 10:01 PM

0 Likes
2,046

To save you a lot of time. We asked our ABAP team to develop a program that will auto-populate infotype 0105 subtype 0001 for every new user and will remove it any time there is a leave action. Our team said this would not be a huge deal for them. This also would assume there is some logic to your user ids, which may or may not be the case.

While, yes, this is technically an HR maintance question, HR does not always know how your ID being tied to your employee record could affect your security. If you are not careful you can have people doing PA maintance on their own records if you, as security, do not enforce 0105 to be accurate.

Edited by: Waldon Smith on Oct 9, 2008 11:01 PM

Read only

Former Member

‎2008 Oct 10 4:13 PM

0 Likes
2,046

Going to have to way in on this one ! Cant beleive people are arguing whether you should have asked it - its a valid question - Kapil all you need to do in future is put as much detail as you can behind it.

Infotype 105 security or hr ? It depends entirely on the individual organisation, our HR department initially had no idea of the impact on security if they changed it. We have non-SAP applications also linked to the 105 infotype so control of who can change it and when is a decision that for us should never be made without security being involved - we just dont do it or fix it per se.

What you need to do in this situation really is to find a business owner for the issue, and determine who in your organisation is responsible for supporting that business owner. Ideally it should be your HR Support team as its really an HR process / functional issue, with input from security support if required.

Cheers

Steve