Reputation: 926
How can I limit user access to transaction SOST?
I am trying to limit a SAP user´s access to transaction SOST. He may only have read/display permissions. I have tried to limit the authorizations in a role using the authorization objects S_TCODE, S_DATASET, S_OC_ROLE and S_OC_SEND. But it is not sufficient.
Any ideas?
Upvotes: 1
Views: 6390
Answers (3)
Reputation: 41
You can create an PFCG (Role Maintenance) role with authorization field S_TCODE to limit the transaction codes could be executed by a user.
Upvotes: 0
Reputation: 10621
Try to use SOSG transaction instead. This transaction corresponds to transaction SOST but makes additional authorization checks. I'd rather do the above requirement in this way:
- Give to user authorization to T-code SOSG (via S_TCODE authorization object)
- Create separate user group and add the relevant users to this group
- Use authorization object S_OC_SOSG where you should strictly specify this group and type of send requests to display
Upvotes: 0
Reputation: 21
You can check at SU24 the objects related to SOST TCode. I think this ones may be the ones you're looking for:
S_OC_DOC; S_OC_ROLE; S_OC_SEND; S_OC_SOSG; S_OC_TCD
Upvotes: 2
Related Questions
- Can I set subject/content of email using mailto:?
- Difference between Authorization Object and an Object Class in ABAP?
- What does the generate authorization process do and what is a Profile?
- Unable to access DBCONN after migration to EHP7
- SAPUI5 Error_Log in Frontend: Statuscode 202: User does not have the sufficient authorizations
- Why does AuthorizeAttribute redirect to the login page for authentication and authorization failures?
- How to limit a certain transaction code for a certain user [ABAP Programming]