Access to a T.Code

Similar Messages

• Gain access to portal application code in portal 7.3

  Hello,
  I'm particularly interested in a code of tclmitsamuimain~wd floorApp, this is a web dynpro (probably) application that displays the current active sessions of the users in portal.
  since the previous API's to get such information are deprecated, i tried to look for the WAR of the application, perhaps it wont be encoded, but unfortunately it is.
  Is there another standard way of getting access to such a code? or should i go to the idea of decompiling the classes ?
  thanks!

  Hi Eli,
  In general, decompiling SAP classes often brings you further, even if in WD cases this is less straight forward than in classical cases, as the model-driven approach does not always produce easy-to-follow implementations. Nevertheless, at least to get the insight, it makes sense.
  SAP (normally) does not deliver the source code of the core Java implementation of the WAS / the portal / ...
  Hope it helps
  Detlev

• Access to ZMSS## t-codes in R/3 by non-HR Users

  In our production system, a user with no HR access was able to access the following transaction codes:
  ZMSS01
  ZMSS02
  ZMSS03
  ZMSS04
  ZMSS05
  These transactions cannot be accessed from the main SAP Easy Access Menu (in R/3). But if you are in a different transaction code and you type “/nZMSS##”, then it opens the transaction. For example, a non-HR user from the Finance team was in transaction ZKKS1 (Variances: Manufacturing Orders and Product Cost Collectors) was able to type /nZMSS01 and accessed the HR reports.
  These are all t-codes that were built for use on the Enterprise Portal to run reports. When used in R/3, they open the same reports.  Since the user does not have any HR authorizations, they were not able to execute the reports to get results, however this is a security concern as a non-HR user has access to HR reporting screens (even though they cannot execute the reports).
  Is anyone familiar with how users could be getting this additional access? Also how does a user have access to the transactions ZMSS## from another SAP transaction but not from the SAP Easy Access Menu? Is there a way to restrict access to these report transactions?
  Thank you,
  Gao

  Gao,
  Did the developers of the t_codes add authorization objects to the transaction codes and programs? If not they should as that is the security restriction you add to a transaction to limit users.
  Go t_code SE93 --> Enter ZMSS01 --> Display and see the authorization object field and maintain the Authorization Object for this t_code.
  *Documentation:
  Auth. object in user master maintenance
  Element of the authorization system.
  An authorization object combines up to 10 authorization fields, which are checked using the AND connective.
  Authorizations are checked against objects in the system. Authorization objects enable complex checks (linked to several conditions) of an authorization. For the authorization check to be successful, the user must pass the check for each field contained in the object.
  Procedure
  Enter the name of the authorization object, which is checked against the authorizations of the calling user when a transaction is started. If the user does not have the necessary authorizations, the transaction will be cancelled.
  You should normally specify an object, which is also checked within the program.
  This check only takes place when calls are made via START TRANSACTION and via the entry "/n<Transaction code>".
  The check is not performed for CALL TRANSACTION or for parameter transactions. If a critical transaction is called in this way, it is the responsibility of the caller to perform the necessary check (AUTHORITY-CHECK).

• I had to replace my hard drive, and I don't have access to my sync code to get my bookmarks into my new browser. How do I get my sync code if I don't have the original email containing it?

  I had to replace my hard drive and need to get my bookmarks from my sync account, but I don't have access to my sync code. How do I get it or can you send it to me again. It was in my email on my bad hard drive. Thanks.

  Intertech Design wrote:
  Where do I get the specially assigned serial number?????  I don't want to have to purchase anything since I already bought the CS2 and I don't need a newer version.
  Follow the prompts at the link provided by Ned.
  Everything's there including your new CS2 non-activation download file and your new non-activation serial number.
  It's free for existing owners of CS and CS2. Nothing more to purchase.

• I have new Adobe premier Elements13 and Photoshop elements 12, but Cannot access website to generate code and register

  I have new Adobe premier Elements13 and Photoshop elements 12, (Download from Amazon) but Cannot access website to generate code and register. Please help if you can.
  I do not know how to find my PC specific code, nor can I simply use another PC if the programs are then only for use on that (not my main) PC!. I have entered the correct serial/codes which came in the download files but simply cannot go further as each time I try it fails to connect with the website?
  Vince

  Please post Photoshop Elements related queries over at
  http://forums.adobe.com/community/photoshop_elements

• Authorization access Issue for Transaction Codes PA10 to PA40

  Hi Experts,
  I have created Custom role for accessing ALL HR Transaction codes in IDES System and added to the user & Tested.
  All transactions codes are working fine except PA10,PA20,PA30 &PA40
  We have new installation of ECC6.0 (HR) IDES System.
  I am new to HR Security.
  Here anything needs to configure in HR System for accessing transaction code PA10 to PA40.
  Please help me regading this.
  Advance Thanks,
  BBC

  I have checked in SM01, Transaction codes PA10 to PA40 are not locked.
  We are facing two issues
  1) when accessing T- Codes PA10 to PA40, System showing message: You are not authorized to use Transaction code.
  Thatz the reason i suggested you to check with basis consultant. Becuas he is the power user he can only see that from his window all the autharizations
  May be you checked from your user your user might have autharization. that user  might be end user who getting msg might not have authorizatoins.
  2) function module : HR_READ_INFOTYPE.
  When Debuging this, It calls internal FM
  HR_CHECK_AUTHORITY_INFTY and returns exception
  no_authorization=1
  See this means that that user have NO autharizatoins
  Best Regards

• Setting System DSN for MS Access Database using Java Code

  How to set the system DSN for Access database using Java Code at runtime....???
  Replies are deeply appreciated...

  I found a 3rd Party MS Access JDBC Driver from a Google search. I downloaded and tried the free trial version. It worked fine but we opted not to purchase the full version and went a different route. If you don't find it, let me know and I'll see if I can track down the name of the product we tested.

• Why can't I access Preferences in Edge Code?

  Why can't I access Preferences in Edge Code? I would rather want the HTML and CSS sheets black or very dark grey and then the different HTML and CSS codes in colors rather than this plain black and white input. I cannot even view HTML and CSS side by side in the same window. I have to physically move my hand to switch views. Why isn't that an option that I can access?

  The Preferences menu item is grayed out because there is no preferences dialog box yet.  It sounds like you're asking for a number of different features, though.  Edge Code is based on an open-source editor called Brackets, which is updated more frequently -- so some of the features you're asking about are available already in Brackets even if you're not seeing them in Edge Code.
  More specific responses:
  Dark color scheme -- this is available in the current Brackets release (View > Themes in the menu).
  "HTML and CSS codes in colors rather than plain black and white" -- if you're not seeing color-coded CSS & HTML files in Edge Code, that's a bug.  What is the file extension of your files?  If you look in the status bar in the lower-right corner, does it say "HTML" or "CSS", or just "Text"?  Can you post a screenshot of what you're seeing?
  View two files side by side -- this will be available in Brackets release 0.44, which is probably due out in late September.
  "I have to physically move my hand to switch views" -- you can switch files without taking your hands off the keyboard using Ctrl-Tab / Ctrl-Shift-Tab (next/previous in MRU order) or using Ctrl-Shift-O (to filter on filename or a subset of the filename).
  Hope that helps,
  - Peter

• Error accessing Activex Automation server code -18001

  hi guys
  i am trying to call  a labview generated DLL   thr' a labview VI   "newread_dll.vi"     which i call in teststand
  but   labview kind of hangs loading it  &
  "error accessing Activex Automation server   code -18001"
  the VI runs without issues in  Labview
  only  in teststand the isssue exists ??
  Attachments:
  seq_dll_error.PNG ‏208 KB

  Hi aparab,
  did you follow the instructions in the error message? See screenshopt for configuration details.
  Below a link which describes, why error code .18001 could occur:
  http://digital.ni.com/public.nsf/allkb/5C692ACB049D0D30862575710051601F?OpenDocument
  Best Regards, Fabian
  Attachments:
  S1.PNG ‏22 KB

• Access denied in my code - Error code:-2147467259

  Hi there,
  I'm a newbie with CR server technology. I installed yesterday a CR XI trial on my system to do a PoC for a customer who already uses CR. He gave me a rpt file to use in my program.
  I'm developing a program where the report is prepared as PDF and then sent by email and fax to certain receivers. I'm in the middle of the work now. Here a first look at my code:
  URL url = Thread.currentThread().getContextClassLoader().getResource(
  "rpt/1442_11791_OrdersbyVault_OrderA4.crystal9_v4_alg.rpt");
  ReportClientDocument clientDoc = new ReportClientDocument();
  clientDoc.setReportAppServer("localhost");
  String file = new File(url.getFile()).toString();
  // Open report
  clientDoc.open(file, 0);
  This code is inside a EJB session bean which should provide the report later as byte[] to another bean which will send it.
  When I execute the bean it usually fails with this exception:
  SRVE0014E: Nicht erfasste Ausnahme für service() durch Root ausgeöst /test.jsp: com.crystaldecisions.sdk.occa.report.lib.ReportSDKServerException: Zugriff verweigert. Überprüfen Sie die Verzeichniseinstellungen für Dateien, auf die Sie zugreifen können.---- Error code:-2147467259 Error code name:failed
  at com.crystaldecisions.sdk.occa.report.lib.ReportSDKServerException.throwReportSDKServerException(Unknown Source)
  at com.crystaldecisions.proxy.remoteagent.r.a(Unknown Source)
  at com.crystaldecisions.sdk.occa.report.application.ReportClientDocument.do(Unknown Source)
  at com.crystaldecisions.sdk.occa.report.application.ReportClientDocument.if(Unknown Source)
  at com.crystaldecisions.sdk.occa.report.application.ReportClientDocument.a(Unknown Source)
  at com.crystaldecisions.sdk.occa.report.application.ClientDocument.open(Unknown Source)
  at de.szb.bt.service.reporting.reporting.ReportingServiceBean.execute(ReportingServiceBean.java)
  at de.szb.bt.service.reporting.reporting.EJSLocalStatelessReportingService_a07b2911.execute(EJSLocalStatelessReportingS
  ervice_a07b2911.java:29)
  at com.ibm._jsp._test._jspService(_test.java:138)
  at com.ibm.ws.jsp.runtime.HttpJspBase.service(HttpJspBase.java:91)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
  at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1572)
  at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:762)
  at com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:121)
  at com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:204)
  at com.ibm.ws.jsp.webcontainerext.JSPExtensionProcessor.handleRequest(JSPExtensionProcessor.java:254)
  at com.ibm.ws.webcontainer.webapp.WebApp.handleRequest(WebApp.java:3071)
  at com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:236)
  at com.ibm.ws.webcontainer.VirtualHost.handleRequest(VirtualHost.java:210)
  at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:1958)
  at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:89)
  at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:472)
  at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:411)
  at com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:101)
  at com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:566)
  at com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:619)
  at com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:952)
  at com.ibm.ws.tcp.channel.impl.WorkQueueManager$Worker.run(WorkQueueManager.java:1039)
  at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1471)
  It fails with an access denied. I know the file is there, I debugged the path and it looks good for me:
  "C:workspacesgfi_it-mediaCashmanagementEJBejbModule pt1442_11791_OrdersbyVault_OrderA4.crystal9_v4_alg.rpt"
  I'm running the RAS as LocalSystem user so it should have the needed rights to access the file. I haven't found a fitting solution to this yet. I tried to use the publishing assistant tool to add it to a repository but ths didn't help. Any suggestion?
  Thanks in advance!
  Kai

  <p>Hello Kai,</p><p>You appear to be trying to use the RAS server, which is one of the servers included with Crystal Reports Server, to do "unmanaged" reporting - i.e., run a Crystal Report report that has not been "published" and is managed by the Crystal Report Server.</p><p>Note that RAS is configured to restrict access to umanaged rpt file to a folder and its subfolder on the system.  This folder is specified in the Central Configuration Manager (CCM).  Is the location of the rpt file within this folder or subfolder?  I&#39;d check that first.</p><p>Sincerely,</p><p>TU </p>

• Customize Access Requried page with code behind attached to it in sharepoint 2010

  Hi,
  I have modified default AccessDenied page to my custom accessdenied.aspx page and put Request Access button on it and javascript client side redirection to my requestaccess (reqestaccess.aspx, reqestaccess.aspx.cs) application page.
  Here the problem is whenever i try to redirect to custom requesaccess page in _layouts it again shows me accessdenied page since user is not having access.
  I changed requrestaccess to my custom requestaccess through Powershell command (UpdateMapping - 5). I can only modify the UI part of requestaccess.aspx and can not bind code behind where i want user to select combination of what access is required
  on the site, there are lots of controls on requestaccess page e.g. dropdown that fetches data from list\external list and so on.
  I tried many things to attach code behind to requestaccess page e.g. <%@ Page Inherits="codebehind.cs" /> and all.
  Q - How can i redirect user to custom request access page (includes both aspx, aspx.cs) and allow user to interact with custom page? Is there any way OR WORKAROUND to do this in Sharepoint 2010?
  OR
  Can we overide with ElevetedPermissions in UI\CodeBehind and show the application page to user?
  OR
  Can user access application page even though they donot have rights to access site? Anything will do.
  OR
  In short, I need to redirect a user to some .aspx\.aspx.cs page from AccessDenied page, irrespective of user having access or not. 
  I hope question is clear enough to understand the issue. :)
  Regards,
  Rahul

  Hi,
  According to your post, my understanding is that you had an issue about the custom Access Required page.
  Microsoft supported using code behind, but for these pages it seemed some difference.
  However, as a workaround, we can put all the functionality to the aspx page directly.
  http://umbraes-tower.blogspot.com/2011/10/custom-request-access-page-in.html
  More reference:
  http://onlinecoder.blogspot.com/2011/05/how-to-customize-requestaccess.html
  http://oszakiewski.net/eric/customizing-the-access-request-page-in-sharepoint-2010
  Thanks & Regards,
  Jason
  Jason Guo
  TechNet Community Support

• Exception while accessing web service through code

  I have a web service developed using AXIS deployed on Weblogic 8.1
  Another web application cotaining GUI deployed on Weblogic 10 tries to access this web service through code.
  This piece of code to invoke the web service is written in Action Class present inside web application. (Struts is used in GUI based web app)
  When the code tries to invoke web service I am getting following error.
  (401)Unauthorized xxx
       at org.apache.axis.transport.http.HTTPSender.readFromSocket(HTTPSender.java:630)
       at org.apache.axis.transport.http.HTTPSender.invoke(HTTPSender.java:128)
       at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:71)
       at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:150)
       at org.apache.axis.SimpleChain.invoke(SimpleChain.java:120)
       at org.apache.axis.client.AxisClient.invoke(AxisClient.java:180)
       at org.apache.axis.client.Call.invokeEngine(Call.java:2564)
       at org.apache.axis.client.Call.invoke(Call.java:2553)
       at org.apache.axis.client.Call.invoke(Call.java:1753)
       at com.ebv.app.web.action.UCS77_1ProcessOfficialChangeSaveDetailsAction.invokeAx(UCS77_1ProcessOfficialChangeSaveDetailsAction.java:243)
       at com.ebv.app.web.action.UCS77_1ProcessOfficialChangeSaveDetailsAction.callUCS77_1ProcessOfficialChangeWebService(UCS77_1ProcessOfficialChangeSaveDetailsAction.java:173)
       at com.ebv.app.web.action.UCS77_1ProcessOfficialChangeSaveDetailsAction.processAction(UCS77_1ProcessOfficialChangeSaveDetailsAction.java:133)
       at com.ebv.framework.web.action.EBVAction.execute(EBVAction.java:106)
       at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:421)
       at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:226)
       at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1164)
       at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:415)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
  The web service URL is as follows:
  http://10.140.96.5:7808/services/ucs77_1/ProcessOfficialChangeSave77_1-v0001.soap
  However
  When I try to hit the webservice URL directly on browser login window appears where same username/password I provide which are passed in code to invoke the web service. I get the success page indicating that web service is invoked on hitting enter.
  The method used in UCS77_1ProcessOfficialChangeSaveDetailsAction.java to invoke web service is as follows:
  public String invokeAx
                 String xmlMessage,
                 String webServiceURL,
                 String webServiceOperation,
                 String username,
                 String password)
            String xmlResponse = null;
            Call webServiceCall = null;
            InputStream input = new ByteArrayInputStream(xmlMessage.getBytes());
            Service service = new Service();
            try
                 webServiceCall = (Call) service.createCall();
                 SOAPEnvelope env = new SOAPEnvelope(input);
                 SOAPEnvelope resEnv = null;
                 webServiceCall.setTargetEndpointAddress(new URL(webServiceURL));
                 webServiceCall.setOperationName(new QName(webServiceOperation));
                 webServiceCall.setUsername(username);
                 webServiceCall.setPassword(password);               
                 try
                      resEnv = webServiceCall.invoke(env);
                 catch (AxisFault e)
                      e.printStackTrace();
                      Message responseMessage = webServiceCall.getResponseMessage();
                      SOAPEnvelope soapXml = (SOAPEnvelope) responseMessage.getSOAPEnvelope();
                      xmlResponse = new String(soapXml.toString().getBytes(AppConstants.UTF8),AppConstants.UTF8);     
                 if (xmlResponse == null)
                      xmlResponse = resEnv.toString();
            catch (Exception e1)
                 e1.printStackTrace();
            return xmlResponse;
  Both the weblogic server reside on two different AIX machines.
  Can anybody tell what's the problem while invoking web service through code?

  time to look into the gateway logs as stated by the fault ..
  <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Body><SOAP-ENV:Fault><faultcode xmlns:p="http://schemas.oblix.com/ws/2003/08/Faults">c</faultcode><faultstring>Step execution failed with an exception</faultstring><detail></detail></SOAP-ENV:Fault></SOAP-ENV:Body></SOAP-ENV:Envelope>
  looks like the cipher step might have failed

• Very strange...server based swf tries to access local working copy code, throws null exception...

  Here's one for the strange folder...
  I have my Flex app.  I build the project and copy the resulting swf to my development (192.168.100.110:511/devportal/) server for testing....this works perfectly fine.
  However, some of my testers see an error (including myself) that is odd.  When I run the swf on the server, for one specific function, I get a null exception error.  What's interesting about it is that the stack trace indicates that the error occurred in my local working copy of code:
  TypeError: Error #1009: Cannot access a property or method of a null object reference.
      at apps::AsrUtilization/togglePanel()[C:\Users\eloy91100636\Desktop\Portal\UserInterface\htd ocs\LABPortal\src\apps\AsrUtilization.mxml:722]
      at apps::AsrUtilization/__callPanel_click()[C:\Users\eloy91100636\Desktop\Portal\UserInterfa ce\htdocs\LABPortal\src\apps\AsrUtilization.mxml:933]
  How is it that a swf running on a separate machine blows up trying to reference a function in the working code on my pc?
  And, what's more, is that some people run the swf just fine with no error and it works clean while others encounter this error.  I've cleaned and recompiled the project and it doesn't fix the problem.
  HELP!!!
  Adrian

       Good call on the player types...yes, the one's who don't see the error are running release version, the rest are running debug version.
  Thanks!!!!!
  Adrian

• Any option to restrict SE16 record level access based on company code?

  Hi All,
  I have a requirement to restrict record level access in SE16 based on company code.
  Our SAP system has two company codes. The requirement is that users of one company code should not be able to see records of other company code in SE16.
  Is it possible through some exits/badis/other methods?
  Thanks in advance.
  Regards,
  Arun Mohan

  You could write a small front end that accepts the company code, applies custom authorization code for each value and retains or removes, then calls the transaction and enters the selections the user requested and that your authorization check resulting in "passing"....  Of course, you'd have to block those users from "pure" SE16...   I once worked in situation similar, users in one country couldn't see USA data, etc. I think someone wrote an entire new program, called by ZSE16, for that.

• Create Role using SPRO_ADMIN has access to more t-codes then what it shows.

  In SPRO_ADMIN I created a Customizing Project and gave it a scope of:
  - SAP NetWeaver
  - Enterprise Structure
  - Cross-Application Components
  - SAP xApp Resource and Portfolio Management (SAP xRPM)
  - Strategic Enterprise Management/Business Analytics
  - Integration with Other mySAP.com Components
  When I added the customizing authorizations from this project to the role it displayed that 3500 t-codes were added.
  I checked SUIM under "Roles by Role name" and clicked on the Transaction assignment button and 3500 t-codes were displayed.
  I then checked SUIM under "Transactions --> Executable for Roles" and it says there are 95,972!
  How is this possible?
  When I added the role to users they were able to get to t-codes that I couldn't find in the menu.
  I have tried deleting the role and re-adding the customizing auth to a role with a different name.  I have tried deleting the
  customizing project in SPRO_ADMIN and re-creating that then adding it to a different role.  I have tried taking a list of all
  the t-codes that are in this role, creating a new role and adding them through the text file import. All of these examples have
  the same result given above.
  Any ideas on how to create this role so that it only has access to the 3500 t-codes it is supposed to have?
  Thank you in advance for your help!
  Neil

  > There is an entry that has 0 for low and ZZZZZZZZZZZZZZZZZZZZ for high.  How would this have gotten added?  I tried to go into PFCG and remove this line under s_tcode and it will only allow me to view. 
  Then you are experiencing the same as PIQAGR_CUST, but with other consequences and a different source. An S_TCODE, S_RFC and S_SERVICE authorization which is display only is either in the menu or pulled in from SU24.
  To find the offending transaction, go to table USOBT_C field HIGH and search for Z* to find it and remove it from SU24. Also check SU22 to see whether it was added there... There might be more than one and other roles will be impacted when they are opened in expert mode!
  Then go to USOBT_CD and find the change document for that transaction code for field HIGH = ZZZZZZZZ... and the user name and date of the change.
  Find that person, and show them this thread...
  You might want to check all other roles which have this transaction in the menu... as that will probably be the origin of the problem and give you an insight into their frustration (and this "workaround" solution).
  What you are doing is a hard day's work and for SPRO related roles this solution (or manual authorizations and profiles) is not uncommon to observe.
  If the quality of the SU22 data were better then it would be less of a hassle and problem. In SU24 you can tune it and remove such things, but ideally the original system should do this. With each support package SAP improves this data, but there is still a lot of standard junk in there as well.
  Retrofitting security is always the most expensive option....
  Cheers,
  Julius
  Edited by: Julius Bussche on Jan 14, 2010 11:00 PM