2007 Dec 21 3:55 PM
Using transaction PU00 giving the user authorization to delete an employee.
I want to permit the user only to delete the employee.
I dont want to give a permission to read or write or update. Only delete. How can I do it
2007 Dec 21 4:29 PM
Hi,
I advise you to make test of these transaction (it will be better if a functional employee of HR help you to test). Add these transaction to a test role in QA or DEV client.
Using Authorization trace (via ST01), check the authorizations the Tx need to delete, read, create or modify. Check the auth. objects and values. As for sure, there will be an object wich demands activity 01, 02, 03 and etc. Usually, activity "06" is for delete, "03" read, "01" create, and so on.
Then restrict the values to the activities you want. Then, you can restrict these objects in all roles that belongs to users wich you want to restrict activity (don't forget authorization addition)
Reward points if helpful....
Cheers,
Rakesh
2007 Dec 21 4:29 PM
Hi,
I advise you to make test of these transaction (it will be better if a functional employee of HR help you to test). Add these transaction to a test role in QA or DEV client.
Using Authorization trace (via ST01), check the authorizations the Tx need to delete, read, create or modify. Check the auth. objects and values. As for sure, there will be an object wich demands activity 01, 02, 03 and etc. Usually, activity "06" is for delete, "03" read, "01" create, and so on.
Then restrict the values to the activities you want. Then, you can restrict these objects in all roles that belongs to users wich you want to restrict activity (don't forget authorization addition)
Reward points if helpful....
Cheers,
Rakesh