How to restrict a user to change his/her account information?

Similar Messages

• How to restrict the user to change the project structure but not the documents?

  Hi,
  I have created one project assigning different users in Solution manger. I want to risitrict some of the users to change the project structure but simultaneously allwoing the project documents to be created, edited or deleted using solar01 under Project documentation tab. For that I have followed the steps provided in the follwoing link.
  http://wiki.scn.sap.com/wiki/display/SM/Howto+Restrict+Changes+to+Project+Nodes+to+Assigned+Team+Members
  I am able to restrict the users to change the project structure, but I am not able to allow access to the project documents. It gives me the message "You are not authorised to change the project". This fulfills my one of the requirements. But, Is there any way  to restrict the user to change the project structure but not the documents?. Any help will be apperitiated.
  Thanks,
  Rutvik Uapdhyay. 

  Hi Rutvik,
  Basically there are 2 different authorization role ...you should look for and customize as per requirement in Z* namespace.
  role  - SAP_SOLAR01_ALL
  this take care of objects in Solar01 like tab access etc
  role -SAP_SOL_KW_ALL
  this takes care of entire documentation within solman
  hope this helps
  Regards
  Prakhar

• How to disable security administrator to change his/her own privileges

  I have a requirement to create a security user how is responsible for create all the user/groups in Repository. I want to disable the Security user to change his or her own privileges. Is this possible in OBI Administration ?
  Cheers,
  Hardeep

  Hi Januja,
  I have done migration Discoverer Admin EUL Layer into OBIEE repository using below methodology.
  Navigate to the <installdrive>\OracleBI\server\Bin directory. There are two important files in this directory: the migration assistant executable file named MigrateEUL.exe and a properties configuration file named MigrationConfig.properties.
  Could you please help me how to migrate discoverer plus workbooks and worksheets into OBIEE Answers?
  go through below link, It will show navigation steps for migrating of EUL from Discoverer to OBIEE.But i need migration of workbooks and worksheets from Discoverer into OBIEE Answers.
  http://www.oracle.com/technology/obe/obe_bi/discoverer/discoverer_1012/discomigration/migrate_disco_biee.htm
  This is very great full help to me …
  Advance thanks for your suggestions.
  Regards
  Duraga Prasad.

• How to Restrict the users from changing the Default variant of report.

  Hello everybody,
  The requirement is to restrict the users to save and overwrite  the default layout variant (Layout for higher managenet)set for the report, but at the same time they should be able to change and save the other layouts for which they are having access.
  I have written the logic in the program which is working fine for all the scenario when we execute the report. But the logic doesnt work if the user is selecting the layout on the output screen of the report.
  for e.g if the user runs the report using the layout varaint for which he is having the authorization then he gets the all 4 options so he then he can select the layout for which he is not authorized and he can overwrite.
  i have debugged and check as i have found that after the report output is shown all the layout paramater is controllled by the statndard SAP objects.
  Can anyone help me out in this issue.
  Thankyou in advance.
  *to get the default layout variant.
    w_save = 'A'.
    if p_vari is initial.
      clear disvariant.
      disvariant-report = sy-repid.
      w_variant = disvariant.
      call function 'REUSE_ALV_VARIANT_DEFAULT_GET'
        exporting
          i_save     = w_save
        changing
          cs_variant = w_variant
        exceptions
          not_found  = 2.
      if sy-subrc = 0.
        p_vari = w_variant-variant.
      endif.
    endif.
  *logic to check user authorization to change the layout setting.
    if p_vari = c_layout.
      if not sy-uname is initial.
        select single * from agr_users
                where agr_name = c_role
                and   uname    = sy-uname.
        if sy-subrc = 0.
          w_save = 'A'.
        else.
          w_save = ' '.
        endif.
      endif.
    endif.
  Regards,
  Satish.

  Hi Maine,
  Thanks for your reply.
  As you mentioned for your own program, you can control the parameter "I_SAVE", when calling "REUSE_ALV_GRID_DISPLAY".
  so already i have use the same logic and control the parameter through I_SAVE and here i am calling method ALV_GRID->SET_TABLE_FOR_FIRST_DISPLAY instead of "REUSE_ALV_GRID_DISPLAY".
  and it works fine when we execute the report but the logic doesnt work when the user tries to change and save the layout variant on the output screen of the report.
  Regards,
  Satish

• How to restrict the user to change ALV layout for Standard Report Output

  Dear All,
  How can i restict the Users to change Output layout of Standard ALV reports,
  kindly suggest to solve the issue.
  Regards,
  Niranjan.G

  Hi NIranjan,
  In the ALV function module , the i_save can have the below paramater values.
  You can add based on your requirement.
  I_SAVE = SPACE Layouts cannot be saved.
  I_SAVE = 'U' Only user-defined layouts can be saved.
  I_SAVE = 'X' Only global layouts can be saved.
  I_SAVE = 'A' Both user-defined and global layouts can be saved.
  Check the Authorization Object - S_ALV_LAYO  in SUIM (Objects by Complex Search)
  Activity -23.
  Edited by: Raj on Jul 13, 2010 3:05 PM

• How to restrict lync user to change their presence

  Is it possible to restrict users to set their presence manually in Lync client.
  Some user in organization manually change their presence which is very panic some time

  Yes, you can get it from the back end database. Take a look here:
  http://blogs.technet.com/b/dodeitte/archive/2011/05/11/how-to-get-the-last-time-a-user-registered-with-a-front-end.aspx
  and
  http://gallery.technet.microsoft.com/office/List-last-time-a-User-b905cf5f
  If this helped you please click "Vote As Helpful" if it answered your question please click "Mark As Answer"
  Georg Thomas | Lync MVP
  Blog www.lynced.com.au | Twitter
  @georgathomas
  Lync Edge Port Check (Beta)
  This forum post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

• In MIGO , How to restrict the user to change the posting date?

  Hi All,
  In MIGO , I want the user to restrict from change in posting date i.e. user should not be able to change the posting date. The system should take to-day date only as a posting date.
  Thanks in advance.
  GP

  Hi,
            check this MBCF0005.
  EXIT_SAPM07DR_001.
  BADI being <b>MB_MIGO_BADI.</b>
  <b>Reward points</b>
  Regads

• How to restrict the user to change/enter field value in me21n?

  Hi, Experts,
  in the me21n screen..for matkl field we need to validate the user authorization.
  if that user having the authorization then it should allow to enter value in the matkl(material group) field.
  other wise it should not allow.
  how to do this validation?
  can anybody help me on this.
  Thanks and Regards,
  venkat

  Hi Aprna,
  Thanks for your reply, but can you give some code for that.
  actually i am new to badi or userexits...
  if you can provide code it will be more helpful for me.
  Thanks in Advance,
  venkat

• How to enable a user to change his own password at EP7?

  I want to give the EP7 users the ability to change their own password at EP.
  Can we do that thru any role assignment or some development is needed?
  Any detailed help would be appreciated .
  I'll give points. Thanks!

  Hi Jones,
  It is possible to change their password in EP 7 with eu_role(Everyone Role). After you  are login in the portal, just go to your personalize and select the User profile in the personlize. In that user porfile having number of tabs, you should select the General Information and click the Modify button, after you getting the edit mode with the changing the password option. It ask old and new password, after you give the password and save it.Once you change the password, just you have to log off and Re - Login with new password. Its working fine.
  I hope this is helps to you.
  Regards
  Prakash T

• How to restrict the user from making any changes in Sales order- item level

  Hi to all
  How to restrict the users from making any changes in sales order at item level if the same sales order is released by senior user through status profile.
  Regards
  Anish Parikh
  Edited by: anish parikh on Jan 24, 2008 5:16 AM

  Hi Anish,
  This can be achieved through the roles and authorization.
  This can be done through the basis team. they can create user profiles and roles.
  For the roles they assign some transaction codes so that they can view the only assigned tr. codes.
  Like that ur requirement can be done.
  Also u can prevent the user to change any fields in the sales order screen (VA02). for that please modify the authorisations.
  Hope i answers.
  Reward points if useful.
  Edited by: kaleeswaran bhoopathy on Jan 24, 2008 9:57 AM

• How will I block/restrict the user to change the payment term in FBL5N?

  Hi All,
  How will I block/restrict the user to change the payment term in FBL5N????
  I have tried on following objects:
  F_BKPF_BLA
  F_BKPF_BUK
  F_BKPF_GSB
  F_BKPF_KOA
  F_IT_ALV
  F_KNA1_BED
  F_KNA1_BUK
  F_LFA1_BUK
  S_ALV_LAYO
  But, not succeeded.
  =>Actually user runs FBL5N, double click on a record then click on Change icon.
  =>Change Payment Term.
  Please reply ASAP. Point will be awarded.
  With Best Regards
  Dharmendra

  Hi Dharmendra,
  Please set an authorization trace in ST01 and then ask the user to execute the transaction and the steps on the same application server as the o ne on which the trace has been set (valid in case we are talking about mutiple application servers for same <SID>). After this is done switch off the trace,list it and fill all the authorization objects. That might give you the perfect idea.
  Regards.
  Ruchit.

• How to restrict the user(Schema) from deleting the data from a table

  Hi All,
  I have scenario here.
  I want to know how to restrict a user(Schema) from deleting the values from a table created in the same schema.
  Below is the example.
  I have created a table employee in abc schema which has two values.
  EMPLOYEE
  ABC
  XYZ
  In the above scenario the abc user can only fire select query on the EMPLOYEE table.
  SELECT * FROM EMPLOYEE;
  He should not be able to use any other DML commands on that table.
  If he uses then Insufficient privileges error should be thrown.
  Can anyone please help me out on this.

  Hi,
  kumar0828 wrote:
  Hi Frank,
  Thanks for the reply.
  Can you please elaborate on how to add policies for a table for just firing a select DML statement on table.See the SQL Packages and Types manual first. It has examples. You can also search the web for examples. This is sometimes called "Virtual Private Database" or VPD.
  If you have problems, post a specific question here. Include CREATE TABLE and INSERT statements to create a table as it exists before the policies go into effect, the PL/SQL code to create the policies, and additonal DML statements that will be affected by the policies. Show what the table should contain after each of those DML statements.
  Always say which version of Oracle you're using. Confirm that you have Enterprise Edition.
  See the forum FAQ {message:id=9360002}
  The basic idea behind row-level security is that it generates a string that is automatically added to SELECT and/or DML statement WHERE clauses. For example, if user ABC is only allowed to query a table on Sunday, then you might write a function that returns the string
  USER  != 'ABC'
  OR      TO_CHAR (SYSDATE, 'DY', 'NLS_DATE_LANGUAGE=ENGLISH') = 'SUN'So whenever any user says
  SELECT  *
  FROM    table_x
  ;what actually runs is:
  SELECT  *
  FROM    table_x
  WHERE   USER  != 'ABC'
  OR      TO_CHAR (SYSDATE, 'DY', 'NLS_DATE_LANGUAGE=ENGLISH') = 'SUN'
  ;If you want to prevent any user from deleting rows, then the policy function can return just this string
  0 = 1Then, if somone says
  DELETE  employee
  ;what actually gets run is
  DELETE  employee
  WHERE   0 = 1
  ;No error will be raised, but no rows will be deleted.
  Once again, it would be simpler, more efficient, more robust and easier to maintain if you just created the table in a different schema, and not give DELETE privileges.
  Edited by: Frank Kulash on Nov 2, 2012 10:26 AM
  I just saw the previous response, which makes some additional good points (e.g., a user can always TRUNCATE his own tables). ALso, if user ABC applies a security policy to the table, then user ABC can also remove the policy, so if you really want to prevent user ABC from deleting rows, no matter how hard the user tries, then you need to create the policies in a different schema. If you're creating things in a different schema, then you might as well create the table in a different schema.

• Restrict A User From Changing A Payment Term While Adding A/R Invoice

  Dear Experts,
  We want to restrict our users from changing payment terms while adding A/R Invoice.
  We use SAP B1 2007 b.
  Thanking  you
  Pradnya

  Hi,
  try below code in transaction notification procedure:
  if (@object_type = '13') and (@transaction_type IN ('A', 'U'))
  BEGIN
  IF exists (select T0.DocEntry FROM OINV T0 Inner Join OCRD T1 on T0.CardCode=T1.CardCode Where T0.GroupNum  !=T1.GroupNum and T0.DocEntry =@list_of_cols_val_tab_del)
            Begin
                 SET @error = 30
                 SET @error_message =N'You are not authorized to change payment terms'     
            end
  END
  for how the transaction notification works or how to use :
  check How to use Transaction Notification
  Thanks,
  Neetu

• How to restrict the user in MIRO for not modifying  price

  Hi All 
  My requirement is How to restrict the users in MIRO screen for not modifying Material Prices  of only the for specific  ROH types .
  For example :
  Valuation class             RM description
    3021                             RM - A
    3022                             RM - B
    3024                             RM - C
  when ever we procure  the above Raw materials A,B and C and
  the Quantity of each Raw material @ 10 units  and value @ 1 INR  for each unit
  RM - A procured qty 10 @1 total price is INR  10
  RM - B procured qty 10 @1 total  price is INR 10
  RM - C procured qty 10 @1 total  price is INR 10
  total price of PO is INR 30
  when we received invoice material prices are  assume it INR 1 is excess for each material.Now the invoice price for each RM has become INR 11.
  in MIRO we want restrict the user to change the price from INR 10 to 11.
  suggest the best possible ways to restrict in MIRO screen
  Thanks & Regards
  Mala

  Dear:   
                    Take help of ABABPER fo implement exit using INVOICE_UPDATE or MRMH0003 Logistics Invoice Verification: Revaluation/RAP exit. If this does not help then seek help of MM functional who will help you to find exit for the required task.
  rEGARDS

• How to stop  the users from changing the Decimal in SAP

  How  to stop  the users from changing User Profile

  Hai,
  It is not possible to restrict SU3 to display, because it has only S_TCODE has the authorization object.
  If you really want to restrict users from changing their profile you have to remove the SU3 access and give SU1 or SU2 which gives access only to Personnel details and Parameters.
  Hope this helps.
  Regards,
  Yoganand.V