Search found 3643 matches

by swright
Mon Dec 09, 2002 4:14 pm
Forum: SAP Security
Topic: Transferring role authorizations between SAP installations
Replies: 3
Views: 1968

Hi Under PFCG, Environment there is the optin to Bulk Download. You cna choose to download all or most or some of your Roles (with associated auths/profiles) inot one large file. In the new client under PFCG, role you can choose upload. If any of the roles already exist in the new ssytem, say you do...
by swright
Mon Dec 09, 2002 4:07 pm
Forum: Basis
Topic: Simple question
Replies: 2
Views: 611

another point to consider...

not everyone in the SAP forums is MALE.

Our Top FI person is a woman, and would probably not bother to respond to your enquiry simply because of the way it was addressed.

Hint...Don't alienate your resources
by swright
Tue Dec 03, 2002 5:12 pm
Forum: SAP Security
Topic: How to limit access to fixed asset postings?
Replies: 5
Views: 3894

Hello Do you have any more information about this activity, e.g. the transaction(s) involved? ASIM? Or something else? It is possible that the authorisation objects are A_B_ANKL and/or A_B_BWAR. It may be that the FI staff need access to the transaction but not the auth objects or vice versa. They m...
by swright
Mon Dec 02, 2002 2:52 pm
Forum: SAP Security
Topic: Authorization for Mass Maitenance for Material Group
Replies: 4
Views: 2641

Hello

When you say it is not working, do you have any error messages or is it just that you selelct the transaction and nothing happens?

Have you used tools such as SU53 or ST01 to show if there any authorisation failures?

Good luck
by swright
Mon Dec 02, 2002 2:38 pm
Forum: SAP Security
Topic: Batch Processing Problems
Replies: 9
Views: 5805

Hi From what I've read so far it does not look like you have done an authorisation trace via ST01. This will show the checks made for the action and you can set it to trace a given transaction for a user. I have found that although the SU53 doesn't show the correct object the trace usually does and ...
by swright
Sun Dec 01, 2002 2:45 pm
Forum: SAP Security
Topic: Theft of ID!!!
Replies: 9
Views: 6946

Hi You've proably found the culprit by now, but if not and you are using Win2K here's a help to find the NT logon at the terminal. Hopefully the person is using their own NT logon. Go to command prompt and type nbtstat -a WS12345 ...where WS12345 is the terminal name. This should showm who is logged...
by swright
Tue Nov 26, 2002 2:20 pm
Forum: SAP Security
Topic: restrict CAT2 (Time Sheet: Maintain Times) on personnel numb
Replies: 3
Views: 2823

The HR auth obj P_PERNR is used to restrict acces to own data. If you put the relelvant Infotypes in P_Pernr with PSIGN value of I then that means the use can dispaly/change only their own data for those infotypes Be aware of other authorisations under P_ORGIN and P_ORGXX which can affect access in ...
by swright
Wed Nov 20, 2002 6:24 pm
Forum: SAP Security
Topic: Access to SUIM reports for end users
Replies: 5
Views: 5106

Hi (apologies in advance for long reply) Our Module Champions (9 functional experts) have access to this and for me as Security Admin it makes life easier. They know that the data in SUIM is not always 100% accurate but use as justone tool, rather than rely on it completely. They know that it does n...
by swright
Tue Nov 19, 2002 8:39 pm
Forum: Job Postings/Resumes
Topic: How many users does your SAP system support?
Replies: 29
Views: 26173

Hi

We have 865 named users, maxing out at around 300 concurrent in peak times.

System is supported by 1 Basis Admin, 1 Security Admin, 8 or 9 functional specialists. We use FI, CO, MM, SD, LO, PM, PS, HR(including CATS & Payroll) and RE.

Cheers
by swright
Wed Oct 30, 2002 2:24 pm
Forum: SAP Security
Topic: list of incorrect logons
Replies: 3
Views: 3968

In 4.6 you can use SUIM to see which existing users have incorrect logons. I'm not sure if this exact option is available in other releases. When in SUIM expand the User area and you should see " List of User Master Records locked due to incorrect logons " The description is a bit deceptive, because...
by swright
Tue Oct 29, 2002 8:32 pm
Forum: Financials
Topic: amount authorization
Replies: 2
Views: 1514

Hi You will need to find out what authorisation objects are checked and in this case failing. When you get a "no authorisation to..." message run transaction SU53 straight away (/nSU53). It should provide a report of the object checked showing the value(s) required and also what relevant access you ...
by swright
Tue Oct 29, 2002 3:44 pm
Forum: Financials
Topic: SAP Audit Information System
Replies: 8
Views: 2465

Hi You might want to consider using the SAP Audit Information System. Our internal auditor uses this. Installation details can be found in SapNotes 100609 and 77503. Once installed it can be accessed via transaction SECR, there are SAP supplied Roles (which your Security Admin can copy and adapt) de...
by swright
Thu Oct 24, 2002 2:37 pm
Forum: Basis
Topic: authorization object for save lists
Replies: 6
Views: 4257

Hello Regarding SU53... we have a couple of 'standard' Roles that all our users get regardless of what funtional area they will be using. One contains useful transactions such as SU53, SU56, some SAP Office txns. This means that for any user, we have basic trouble shooting tools and communication to...