How to restrict a user group to a sharepoint site in 2007

Similar Messages

• How to restrict a user group of SQ01 for only execution for some users

  Hi,
     I would like to know if it is possible to restrict the access to SQ01 transaction for some users. I would like that these users have only execution access to some queries associated with an user group.
     Do I have to associate the user group to the users I want to have access to it? How can I do it=
     Do I have to associate the queries created on SQ01 to the users? or it is enough to assign the users to the user group where the queries are defined?
     Do I have to associate the infosets created on SQ02 to the users? or it is enough to assign the users to the user group to which the infosets are associated?
     Thank you,
     Luz D.

  I suggest you do a web search on SQ01 and SQ02. That'll bring along SQ03 as well.
  There's so much information available on the web that there's no reason to repeat it here.
  [try google|http://www.google.com/search?hl=en&safe=off&q=SAPsq01sq02&meta=]
  Jurjen

• How to Restrict a user to a access a particular table

  HI ,
  how to restrict an user to a one particular table and he should have only dispaly authorization for that , can anyone suggest me how to do this.

  Hi,
  Is it a standard table ? S_TABU_DIS (Client Dependant) and S_TABU_CLI (Cross client) are the the authorization objects that controls table maintenance. With Authorization group and activity 03, you can give user access only to Display.
  You can look at table TDDAT to find the authorization group of the table. If it is a custom table for which original t-code is SM30 ( You can look at SU24 to verify that) and it does not have authorization group assigned to it, then you can ask your developer to assign authorization group to the table using t-code SE54. then again make use of S_tabu_dis with activity 03 and Auth group as designed to restrict access.
  Also something to look for is Note 1481950 - New authorization check for generic table access using new auth object S_TABU_NAM. Remember Bernhard talking about it.
  Edited by: Nishant Sourabh on Oct 1, 2010 8:13 PM

• How to restrict the user(Schema) from deleting the data from a table

  Hi All,
  I have scenario here.
  I want to know how to restrict a user(Schema) from deleting the values from a table created in the same schema.
  Below is the example.
  I have created a table employee in abc schema which has two values.
  EMPLOYEE
  ABC
  XYZ
  In the above scenario the abc user can only fire select query on the EMPLOYEE table.
  SELECT * FROM EMPLOYEE;
  He should not be able to use any other DML commands on that table.
  If he uses then Insufficient privileges error should be thrown.
  Can anyone please help me out on this.

  Hi,
  kumar0828 wrote:
  Hi Frank,
  Thanks for the reply.
  Can you please elaborate on how to add policies for a table for just firing a select DML statement on table.See the SQL Packages and Types manual first. It has examples. You can also search the web for examples. This is sometimes called "Virtual Private Database" or VPD.
  If you have problems, post a specific question here. Include CREATE TABLE and INSERT statements to create a table as it exists before the policies go into effect, the PL/SQL code to create the policies, and additonal DML statements that will be affected by the policies. Show what the table should contain after each of those DML statements.
  Always say which version of Oracle you're using. Confirm that you have Enterprise Edition.
  See the forum FAQ {message:id=9360002}
  The basic idea behind row-level security is that it generates a string that is automatically added to SELECT and/or DML statement WHERE clauses. For example, if user ABC is only allowed to query a table on Sunday, then you might write a function that returns the string
  USER  != 'ABC'
  OR      TO_CHAR (SYSDATE, 'DY', 'NLS_DATE_LANGUAGE=ENGLISH') = 'SUN'So whenever any user says
  SELECT  *
  FROM    table_x
  ;what actually runs is:
  SELECT  *
  FROM    table_x
  WHERE   USER  != 'ABC'
  OR      TO_CHAR (SYSDATE, 'DY', 'NLS_DATE_LANGUAGE=ENGLISH') = 'SUN'
  ;If you want to prevent any user from deleting rows, then the policy function can return just this string
  0 = 1Then, if somone says
  DELETE  employee
  ;what actually gets run is
  DELETE  employee
  WHERE   0 = 1
  ;No error will be raised, but no rows will be deleted.
  Once again, it would be simpler, more efficient, more robust and easier to maintain if you just created the table in a different schema, and not give DELETE privileges.
  Edited by: Frank Kulash on Nov 2, 2012 10:26 AM
  I just saw the previous response, which makes some additional good points (e.g., a user can always TRUNCATE his own tables). ALso, if user ABC applies a security policy to the table, then user ABC can also remove the policy, so if you really want to prevent user ABC from deleting rows, no matter how hard the user tries, then you need to create the policies in a different schema. If you're creating things in a different schema, then you might as well create the table in a different schema.

• How to restrict the user in MIRO for not modifying  price

  Hi All 
  My requirement is How to restrict the users in MIRO screen for not modifying Material Prices  of only the for specific  ROH types .
  For example :
  Valuation class             RM description
    3021                             RM - A
    3022                             RM - B
    3024                             RM - C
  when ever we procure  the above Raw materials A,B and C and
  the Quantity of each Raw material @ 10 units  and value @ 1 INR  for each unit
  RM - A procured qty 10 @1 total price is INR  10
  RM - B procured qty 10 @1 total  price is INR 10
  RM - C procured qty 10 @1 total  price is INR 10
  total price of PO is INR 30
  when we received invoice material prices are  assume it INR 1 is excess for each material.Now the invoice price for each RM has become INR 11.
  in MIRO we want restrict the user to change the price from INR 10 to 11.
  suggest the best possible ways to restrict in MIRO screen
  Thanks & Regards
  Mala

  Dear:   
                    Take help of ABABPER fo implement exit using INVOICE_UPDATE or MRMH0003 Logistics Invoice Verification: Revaluation/RAP exit. If this does not help then seek help of MM functional who will help you to find exit for the required task.
  rEGARDS

• How to restrict the user from making any changes in Sales order- item level

  Hi to all
  How to restrict the users from making any changes in sales order at item level if the same sales order is released by senior user through status profile.
  Regards
  Anish Parikh
  Edited by: anish parikh on Jan 24, 2008 5:16 AM

  Hi Anish,
  This can be achieved through the roles and authorization.
  This can be done through the basis team. they can create user profiles and roles.
  For the roles they assign some transaction codes so that they can view the only assigned tr. codes.
  Like that ur requirement can be done.
  Also u can prevent the user to change any fields in the sales order screen (VA02). for that please modify the authorisations.
  Hope i answers.
  Reward points if useful.
  Edited by: kaleeswaran bhoopathy on Jan 24, 2008 9:57 AM

• How to restrict the user to enter only numeric values in a input field

  How to restrict the user to enter only numeric values in a input field.
  For example,
  i have an input field in that i would like to enter
  only numeric values. no special characters,alphabets .
  reply ASAP

  Hi Venuthurupalli,
  As valery has said once you select the value to be of type integer,once you perform an action it will be validated and error message that non numeric characters are there will be shown. If you want to set additional constraints like max value, min value etc you can use simple types for it.
  On the project structure on left hand side under local dictionary ->datatypes->simple types create a simple type of type integer
  The attribute which you are binding to value property ;make its type as simple type which you made
  Hope this helps you
  Regards
  Rohit

• How to create Infoset&user group query--(query report)

  Hi Guys,
    how to create Infoset&user group query--(query report),
    Pls send me the exact procedure with Example....
                                                                            Regards:
                                                                            Kumar .G

  goto SQ03 and create an User Group If U want to create Ur Own.
  Goto SQ02 to create Ur Infoset by Giving Logical database name or Simple Database table
  Then Choose What ever data U need to be included in The Qurey in field Groups.
  Then Generate the Infoset
  Now Assign the infoset to user group
  Now goto SQ01 and Click on Other user group Button and choose Ur user Group.
  Then in the USer group select Ur Infoset and then create Ur own Query and save this.
  Now select the infoset query and goto More functions under Query menu and Generate report name.
  Now Create a transaction code for the report name generated.
  Now use the Tcode.
  Hope U have got the basic idea of creating Queries.
  ~BiSu

• How to restrict the user for re-submitting the same form

  Hi All,
  I would like to know, How to restrict a user for re-submitting the same page.
  I have a jsp page with submit button... and should not allow the user to save the same data again ..
  Anil

  Try the followings. If user disable cookies, this will not work. You need to modify to detect such situation!
  String processed = "mycooke";
  Cookie[] cookies = request.getCookies();
  Cookie c = null;
  if (cookies!=null) {
     for (int i=0; i < cookies.length; i++) {
         if (cookies.getName.equals(processed)) {
  c = cookies[i];
  break;
  if (c!=null) {
  // already processed.
  // send error message and exit.
  // set cookie;
  c = new Cookie(processed , "yourdata");
  c.setMaxAge(-1);
  response.addCookie(c);
  // process as it is the first;

• HT4798 I'm seeing the above problem, how can i open "Users&Groups" if i can't login?

  I'm seeing the above problem, how can i open "Users&Groups" if i can't login?

  If the system is associated with an Apple ID, and you know that account password, the Apple ID can be used to reset your user account password.
  Otherwise, boot into Recovery by holding down the key combination command-R at startup. Release the keys when you see a gray screen with a spinning dial.
  When the OS X Utilities screen appears, select Utilities ▹ Terminal from the menu bar.
  In the Terminal window, type this:
  resetpassword
  That's one word with no spaces. Then press return. A Reset Password window opens.
  Select your boot volume if not already selected.
  Select your username from the menu labeled Select the user account if not already selected.
  Follow the prompts to reset the password. It's safest to choose a password that includes only the characters a-z, A-Z, and 0-9.
  Select  ▹ Restart from the menu bar.
  You should now be able to log in with the new password, but you won't be able to unlock the Keychain. If you've forgotten the Keychain password (which is ordinarily the same as your login password), there's no way to recover it. You’ll need to reset your keychain in the preferences of the Keychain Access application.

• How to restrict a User to access only 2-3 views in MM01/MM02 ???

  Hi,
  Can anyone tell me how can I restrict a User to access only 2-3 views in MM01/MM02 and also the User should not be allowed to change the View selection by clicking on the Select Views button ?.
  Regards,
  Lucky

  Hi Prashant,
  Can this only be done through changes in Authorization Objects ? Is not there any setting which can be done in SPRO for this ?
  Hi Sheshagiri,
  I could not exactly understand how the access to MM Views can be restricted to User through TCode OMT3B i.e. in SSeq. 01 and Screen 07 ? Subscreen 2154 is for Mat. Groups ? Please explain your answer in detail.
  Regards,
  Lucky

• How to restrict a user typing a custom value in the dDocAccount field.

  I have dDocAccount field drop down pre-populated with 2 values - Dept1, Dept2. However, user can able to type any other values (say Dept3) in the account text box and checkin a doc from WCC UI. How to restrict user from entering custom values?
  As an alternate solution - for time being i have the above account field is set as hidden using rule. I am trying to derive the account value from another one field's value (say Departments field with values Dept1, Dept2). I tried below code and found working:
  Department is a custom field created as option list with values Dept1, Dept2
  Under the Rules, for the field dDocAccount, is derived field checked and added below code
  <$dprDerivedValue=#active.xDepartment, getValue("#local","dOption")$>

  Hi,
  If Department is a custom metadata then you should access it like xDepartment(as any other custom metadata), not dDepartment.
  I know it is also possible to change the HTML that is generated for the dDocAccount field, to add javascript validation and so on, maybe this approach plus some additional JS and HTML twists and you should get it working(via component development).
  Hope it helps,
  Vlad

• How to Restrict the users in oracle applications

  Hi,
  I want to Restrict the users in oracle applications without using database
  can any one please expalin me how to resttrict the users using middletier
  Thanks
  Gita

  HI srini ,
  my application version 12.0.4 and database is 10.2.0.4
  and i want to restrict the No of users
  exp i have have 500 users and i want restrict to 100 only
  how can i do that please explain
  Thanks,
  Sudheer

• Restricting certain users groups to read only for certain folders

  Hi
  I'm not sure if this is the correct forum, but hey, hopefully someone might now the answer or direct me to the correct one.
  I'm writing a VB program to amend ACLs for specific user groups.
  Effectively, I make all prior year folders read only, whereas the default for the group is Modify, Delete etc.  This means they can continue to work in the "new year folders", but historic years is List/read only.
  I've got to the point the program does everything I want, i.e. stops folder creation7deletion, file & folder name changes, copying for the historic years, but does not prevent deletion of files in the folder.  Effectively I set Deny access on the
  historic folders.
  Testing using the Windows GUI would appear to resolve the problem is I change the Deny Special Permission (for the group) from "This folder only" to "This folder & files".
  Question then is how to I set this in VB, the default appearing to be "This folder only"
  Here's extract of my code
  Thanks
  IfvarDirectoryName.IndexOf("\"&
  Date.Now.Year) = -1
  Then
              FileAcl3.AddAccessRule(
  NewFileSystemAccessRule(GroupAdmin(0),
  FileSystemRights.Modify,
  AccessControlType.Deny))
              FileAcl3.AddAccessRule(
  NewFileSystemAccessRule(GroupAdmin(0),
  FileSystemRights.DeleteSubdirectoriesAndFiles,
  AccessControlType.Deny))
              FileAcl3.RemoveAccessRule(
  NewFileSystemAccessRule(GroupAdmin(0),
  FileSystemRights.ReadAndExecute,
  AccessControlType.Deny))
              FileAcl3.RemoveAccessRule(
  NewFileSystemAccessRule(GroupAdmin(0),
  FileSystemRights.ListDirectory,
  AccessControlType.Deny))
  Dim FileInfo3 As IO.FileInfo = New IO.FileInfo(varDirectoryName)
  Dim FileAcl3 As New FileSecurity
  If varDirectoryName.IndexOf("\" & Date.Now.Year) = -1 Then
  FileAcl3.AddAccessRule(New FileSystemAccessRule(GroupAdmin(0), FileSystemRights.Modify, AccessControlType.Deny))
  FileAcl3.AddAccessRule(New FileSystemAccessRule(GroupAdmin(0), FileSystemRights.DeleteSubdirectoriesAndFiles, AccessControlType.Deny))
  FileAcl3.RemoveAccessRule(New FileSystemAccessRule(GroupAdmin(0), FileSystemRights.ReadAndExecute, AccessControlType.Deny))
  FileAcl3.RemoveAccessRule(New FileSystemAccessRule(GroupAdmin(0), FileSystemRights.ListDirectory, AccessControlType.Deny))
  FileInfo3.SetAccessControl(FileAcl3)
  End If

  Ho Rohn
  Your right, when I added the flags I got the following error at execution
  {"No flags can be set. Parameter name: inheritanceFlags"}
  I've developed a work around, which gives me exactly - subject to further testing - what I want.  I simply mark each file in the relevant folders with a Deny Delete option.
  I will however explore the DirectorySecurity class option, but initial review of the www seems a little shy on VB examples.
  Thanks
  Perry
  You should be able to use FileSecurity and DirectorySecurity the same way (they have identical methods). Since this is a scripting forum, I'll provide a PowerShell example (which is fairly close to C# and VB; they all use the exact same classes):
  $varDirectoryName = "c:\folder"
  $GroupAdmin = "Admin Group"
  $FileInfo3 = New-Object System.IO.DirectoryInfo $varDirectoryName
  $FileAcl3 = $FileInfo3.GetAccessControl()
  $FileAcl3.AddAccessRule((New-Object System.Security.AccessControl.FileSystemAccessRule (
  $GroupAdmin,
  [System.Security.AccessControl.FileSystemRights]::Modify,
  ([System.Security.AccessControl.InheritanceFlags]::ContainerInherit -bor [System.Security.AccessControl.InheritanceFlags]::ObjectInherit),
  [System.Security.AccessControl.PropagationFlags]::None,
  [System.Security.AccessControl.AccessControlType]::Allow
  $FileInfo3.SetAccessControl($FileAcl3)
  I could have taken a lot of shortcuts when using the enumerations, but I think keeping it verbose helps show how similar the code can be.
  Does that make sense?

• How to restrict a user to change his/her account information?

  Hi,
  I want to restrict some users so they can't change their account
  information (password, name, homepage, etc.).
  Any clue?
  TIA

  This is an interesting issue because we want to allow our end users to enter account information such as contact info, address, email, etc. However, we do not want to allow them to change their default group and home page setting or mass confusion will happen. There has to be a way to do this!!
  -Dave Bergman-