How to restrict Group Currency to Version

Hi
I am looking into multiple group currency consolidation, using different versions.
My question, is it possible to restrict the Group Currency by version.
E.g., I want version 100 to be restricted to group currency GBP, and version 999 to be restricted to group currency USD.
Regards
M

Thanks Eugene
I appreciate I can specify in the Parameters the relevant combinations.
However what I want to do is restrict whats acceptable in the parameters, that is
GBP & v.999 or USD & v.100 should not be allowed to be entered.
Because you can have 2 group currencies in a single version, then I am not sure how this would be restricted.
Thanks
M

Similar Messages

How to post group currency

SAP FI: F107 valuation (for doubtful debts provision) will not post group currency?
IN SAP, transaction F107 valuations, which executes valuation calculation for doubtful debt provision and then updates GL using background processing is only posting amounts in local currency (CHF); group currency value is 0.00. Group currency (DKK) for company code. If I post general posting eg FB50 or F-02, local currency values translate to group currency automatically. How do I get F107 to automatically translate and post group currency also?

Hello,
At the time of clearing, the foreign exchange differences cannot be posted.
You need to do the foreign currency revaluations of open items Refer F.05 or F-05
Please note once document is posted currency or amount cannot be changed.
Regards,
Ravi

How to restrict group of workstations

Zenworks 3.2 sp2 & WinXP Novell Client 4.9sp2
User policy for Staff/Faculty accounts gives them DLU accounts wiht the
Admininstrator's rights - the main reason is the fact that they use PCs
mainly in the offices. Volatile User Cache is set to 366 days on office PCs.
Students get Limited DLU accounts and public PCs have Workstation
Manager configured to non-volatile accounts (Cache is unchecked).
Unfortunately some faculties treat public lab PCs as their own and they
install whatever they desire on the lab PCs (why not ? since they have
all the rights, right?)
I wonder if I could somehow restrict staff/faculty access on those
workstations through policies.
TIA
Andrzej

Well, I'm afraid there is no better solution. As long as they are
"Administrators" on the public PCs they WILL mess them up. There is very
little you can do about that (such as disabling Start->Run, regedit,
setup.exe, etc.) and it will have limited effect.
Deyan
Andrzej Zalewski wrote:
> Deyan
> I thought about it, but we have too many staff memeber sharing PCs,
> besides my boss wants to have everything as general as possible, no
> manual intervention on a deployed pc, regardless office or public lab.
> Andrzej
>
> Deyan Stoykov wrote:
>
>> Andrzej,
>> Create a local account for each faculty/staff user on his/her personal
>> PC in the office, member of the Administrators group and matching
>> his/her NDS username and password. After that reconfigure the DLU
>> policy so that they will not have administrative rights. Then they
>> will be members of Administrators on their personal PCs in their
>> offices and members of Users everywhere else. This makes most sense to
>> me.
>>
>> HTH
>> Deyan
>>
>> Andrzej Zalewski wrote:
>>
>>> Zenworks 3.2 sp2 & WinXP Novell Client 4.9sp2
>>> User policy for Staff/Faculty accounts gives them DLU accounts wiht
>>> the Admininstrator's rights - the main reason is the fact that they
>>> use PCs mainly in the offices. Volatile User Cache is set to 366 days
>>> on office PCs.
>>>
>>> Students get Limited DLU accounts and public PCs have Workstation
>>> Manager configured to non-volatile accounts (Cache is unchecked).
>>>
>>> Unfortunately some faculties treat public lab PCs as their own and
>>> they install whatever they desire on the lab PCs (why not ? since
>>> they have all the rights, right?)
>>>
>>> I wonder if I could somehow restrict staff/faculty access on those
>>> workstations through policies.
>>> TIA
>>> Andrzej

How to restrict users working on Windows 7 clients from accessing Windows Explorer and other systems in the network through Group Policy with a domain controller running on Windows Server 2008 r2

Dear All,
We are having an infrastructure setup of around 500 client computers managed through group policy.
Recently the domain controllers have been migrated from Windows Server 2003 to Server 2008 R2.
Since this account requires extremely strict environment, we need to figure the solution for restricting the users from access anything locally.
It would be great if you can assist me with the following query.
How to restrict users logged on Windows 7 clients from accessing Windows Explorer and browsing other systems in the network through Group Policy with a domain controller running on Windows Server 2008 r2 ?
Can we disable Network Tab on the left hand pane ?
explorer.exe is blocked already, but users are able to enter the Windows Explorer by clicking on the name which is visible on the Start Menu.

>   * explorer.exe is blocked already, but users are able to enter the
>    Windows Explorer by clicking on the name which is visible on the
>    Start Menu.
You cannot block explorer.exe when you do not replace the shell - the
desktop you see effectively IS explorer.exe...
Your requirement sounds like you need a custom shell:
http://gpsearch.azurewebsites.net/#2812
Martin
Mal ein
GUTES Buch über GPOs lesen?
NO THEY ARE NOT EVIL, if you know what you are doing:
Good or bad GPOs?
And if IT bothers me - coke bottle design refreshment :))

How to get historical currency rate for second group currency transactions in Fixed Assets

Hello,
My client had MXN (Mexico Currency) as a legal currency and when the company code was implemented (went live) group currency was not implemented. After 3 years this company code implemented second local currency as USD and is now a USD functional Company. When Fixed assets movements such as depreciation, retirement etc are posted; the postings in local currency is fine but postings in group currency is not fine the reason is the exchange rate for group currency must be 'historical rate" but instead of that the entries are being posted in "current rate". To rectify this issue we need to set the exchange rate as the historical rate. Now my question is where/how can I get the historical rate (rate when asset was acquired/purchased). When the assets were acquired the amount was in MXN and there was no maintenance of USD exchange rate as there was no second local currency so then how can I get the historical exchange rate for USD. Most of the assets were acquired/purchased before 5-10 years then how can I find the USD exchange rate for those periods.
Thanks,
Rinki

It is necessary yo have a different rate type for average. The month-end rate type cannot be used.
The M-rate type is typically the month-end rate.

Group policy - restricted groups. How to specify a -local- user as member of the administrators group in group policy

Hi
With restricted groups I can specify the end user -domain- accounts that are members of the local administrators group on domain PCs. But - I need a particular LOCAL account on all the machines to keep its membership of the local administrators group for testing reasons. At the moment restricted groups is striping this local account of its admin access.
Is it possible to specify a -local- computer account as admin on all the PCs via group policy or it can only be done with domain accounts?
thanks

You are asking for local accounts to be managed via "Restricted Groups".
Yes, it is possible.
Rajesh showed you one way with domain groups. In his version "Administrators" group will only contain those accounts
that are specified in the GPO, no manually added accounts. This is not always desired.
If you wish to have an account (group or user, local or domain) to be added to "Administrators" group while keeping all the other
members, proceed like this:
- create the local account on the client(s)
- in the GPO select "Add Group" in "Restricted Groups".
- type in the name of the local account, e.g. "TestID"
- in the appearing dialogue choose "This group is a member of" => Add
- type in "Administrators"
Link the GPO and that's all.
The original MS description for "Restricted Groups".is here:
http://support.microsoft.com/kb/279301/en-us
Another nice one here:
http://www.frickelsoft.net/blog/?p=13
Besides that, a great solution to manage local accouts is GP Preference Extension "Local Users and Groups".
You can simply create a "Local Users and Groups" Item (computer or user based) and specify the needed options.
http://technet.microsoft.com/en-us/library/cc731972.aspx
Of course you need some prerequisites (at least one Vista or Winows 2008 for management and the GPP CSE on each target machine).
If you are new to GPP, these links will help you to get into it:
http://www.microsoft.com/DOWNLOADS/details.aspx?familyid=42E30E3F-6F01-4610-9D6E-F6E0FB7A0790&displaylang=en
http://support.microsoft.com/kb/943729/en-us
http://technet.microsoft.com/en-us/library/cc732027.aspx
http://technet.microsoft.com/en-us/library/cc731892(WS.10).aspx
Patrick

How to Restrict other Business Group DFF ....

Hi,
How to restrict the Other Business Group DFF Espically Additional Location Details, Add'l Org. Unit Details etc. If any one knows pls reply me ASAP ..
with regards
Surya

You can try personalization, but why you need to hide the Oraganization and Location details from BG.
If it is at employee level or job or position that will be fine,,is there any specific reason you are looking to hide the DFF in the Location and Organization level
Message was edited by:
Ramsys

How to change config to allow posting to group currency field

Hi,
I am experiencing a problem whereby the asset for my local currency (USD) is different from my group currency (USD). There are many wrong postings causing this difference.
And it is too late & tedious to do all the correction.
Area 01 Local Currency (USD)
Area 03 Group Currency (USD)
However, I would like to do a posting to asset in both loc & group currency. My current config does not allow changes to group currency field when posting a transaction to an asset. It is grey off. System auto generate the figure.
How to I change the config so that I can also input a different figure for the group currency ?
Please help urgently.
Thanks.
Angel

Hello,
I contact you because I need to maintain a "Person Group" (PERS_GROUP in ADRP table) for 1 sales organization (SD module), but I have no idea how to do that... I checked the customer master data views (transaction XD02) but I did not find anything...
Do you know which transaction I should use?
Thanks a lot in advance!

How to add Restricted Groups in GPO programmatically?

I have a requirement where i need to manage (crud) GPO on a server. I was able to create gpo and add some security filters but i could not find any way to add Local group in Restricted groups.
I am using GPMC class library for C#. Any help will be appreciated.
Thanks!

> This works but i am still looking for the way to do it programmatically.
As said - there is none. At least not from MSFT - they only provide APIs
to set ADM Template values and GPP Registry.
If you have a budget, check out
https://sdmsoftware.com/group-policy-management-products/group-policy-automation-engine/
Martin
Mal ein
GUTES Buch über GPOs lesen?
NO THEY ARE NOT EVIL, if you know what you are doing:
Good or bad GPOs?
And if IT bothers me - coke bottle design refreshment :))

How to Restrict/Disable back button in browser

Hi guys,
I am writing a enterprise web application using ADF. I am using JDeveloper 11.1.2.0.0.
I want to restrict/ disable browser back/forward buttons in all my .jspx and .jsf pages.
It was discussed in following thread as well.
how to Restrict/Disable back button in browser
Can somebody give a way to do this please.
Regards !
Sameera

Hi Sudipto,
This is one of my .jspx pages. I wonder where should I put that javascript code. I have tried in several places and didn't work.
<?xml version='1.0' encoding='windows-1252'?>
<jsp:root xmlns:jsp="http://java.sun.com/JSP/Page" version="2.1"
xmlns:f="http://java.sun.com/jsf/core"
xmlns:h="http://java.sun.com/jsf/html"
xmlns:af="http://xmlns.oracle.com/adf/faces/rich">
<jsp:directive.page contentType="text/html;charset=UTF-8"/>
<f:view>
<af:document title="Registration Page" id="d1">
<af:messages id="m1"/>
<af:form id="f1">
<af:pageTemplate viewId="/MyPageTemplate.jspx" id="pt1">
<f:facet name="MainPageRegion">
<af:group id="g1">
<af:panelSplitter splitterPosition="454"
inlineStyle="width:943px; height:200px;"
id="FirstRN">
<f:facet name="first">
<af:panelGroupLayout layout="scroll" id="pgl1">
<af:outputText value="Registration Details"
inlineStyle="font-weight:bold;" id="ot1"/>
<af:separator id="s1"/>
<af:panelFormLayout labelAlignment="start" id="pfl1">
<f:facet name="footer"/>
<af:panelLabelAndMessage label="#{bindings.RegNum.hints.label}" id="plam1">
<af:outputText value="#{bindings.RegNum.inputValue}" id="ot2"/>
</af:panelLabelAndMessage>
<af:selectOneChoice value="#{bindings.ProcType.inputValue}"
label="#{bindings.ProcType.label}"
required="#{bindings.ProcType.hints.mandatory}"
shortDesc="#{bindings.ProcType.hints.tooltip}" id="soc1">
<f:selectItems value="#{bindings.ProcType.items}" id="si1"/>
</af:selectOneChoice>
<af:selectOneChoice value="#{bindings.RegStatus.inputValue}"
label="#{bindings.RegStatus.label}"
required="#{bindings.RegStatus.hints.mandatory}"
shortDesc="#{bindings.RegStatus.hints.tooltip}" id="soc2">
<f:selectItems value="#{bindings.RegStatus.items}" id="si2"/>
</af:selectOneChoice>
<af:panelLabelAndMessage label="#{bindings.TotalUsdAmt.hints.label}" id="plam2">
<af:outputText value="#{bindings.TotalUsdAmt.inputValue}" id="ot3">
<af:convertNumber groupingUsed="false"
pattern="#{bindings.TotalUsdAmt.format}"/>
</af:outputText>
</af:panelLabelAndMessage>
<af:panelLabelAndMessage label="#{bindings.TotalPfiAmt.hints.label}" id="plam3">
<af:outputText value="#{bindings.TotalPfiAmt.inputValue}" id="ot4">
<af:convertNumber groupingUsed="false"
pattern="#{bindings.TotalPfiAmt.format}"/>
</af:outputText>
</af:panelLabelAndMessage>
</af:panelFormLayout>
</af:panelGroupLayout>
</f:facet>
<f:facet name="second">
<af:panelGroupLayout layout="scroll"
xmlns:af="http://xmlns.oracle.com/adf/faces/rich" id="pgl2">
<af:outputText value="Creation Details"
inlineStyle="font-weight:bold;" id="ot5"/>
<af:separator id="s2"/>
<af:panelFormLayout labelAlignment="start" id="pfl2">
<f:facet name="footer"/>
<af:panelLabelAndMessage label="#{bindings.CreatedByName.hints.label}" id="plam4">
<af:outputText value="#{bindings.CreatedByName.inputValue}" id="ot6"/>
</af:panelLabelAndMessage>
<af:panelLabelAndMessage label="#{bindings.CreationDate.hints.label}" id="plam5">
<af:outputText value="#{bindings.CreationDate.inputValue}" id="ot7">
<af:convertDateTime pattern="#{bindings.CreationDate.format}"/>
</af:outputText>
</af:panelLabelAndMessage>
<af:selectOneChoice value="#{bindings.RequestedBy.inputValue}"
label="#{bindings.RequestedBy.label}"
required="#{bindings.RequestedBy.hints.mandatory}"
shortDesc="#{bindings.RequestedBy.hints.tooltip}" id="soc3">
<f:selectItems value="#{bindings.RequestedBy.items}" id="si3"/>
</af:selectOneChoice>
<af:panelLabelAndMessage label="#{bindings.DepartmentName.hints.label}" id="plam6">
<af:outputText value="#{bindings.DepartmentName.inputValue}" id="ot8"/>
</af:panelLabelAndMessage>
</af:panelFormLayout>
</af:panelGroupLayout>
</f:facet>
</af:panelSplitter>
<af:panelSplitter inlineStyle="width:944px; height:132px;"
splitterPosition="452" id="SecondRN">
<f:facet name="first">
<af:panelGroupLayout layout="scroll"
xmlns:af="http://xmlns.oracle.com/adf/faces/rich" id="pgl3">
<af:outputText value="Notes to Buyer"
inlineStyle="font-weight:bold;" id="ot9"/>
<af:separator id="s3"/>
<af:inputText value="#{bindings.NotesBuyer.inputValue}"
simple="true"
required="#{bindings.NotesBuyer.hints.mandatory}"
columns="#{bindings.NotesBuyer.hints.displayWidth}"
maximumLength="#{bindings.NotesBuyer.hints.precision}"
shortDesc="#{bindings.NotesBuyer.hints.tooltip}"
rows="5" id="it1">
<f:validator binding="#{bindings.NotesBuyer.validator}"/>
</af:inputText>
</af:panelGroupLayout>
</f:facet>
<f:facet name="second">
<af:panelGroupLayout layout="scroll"
xmlns:af="http://xmlns.oracle.com/adf/faces/rich" id="pgl4">
<af:outputText value="Party Notes"
inlineStyle="font-weight:bold;" id="ot10"/>
<af:separator id="s4"/>
<af:inputText value="#{bindings.PartyNotes.inputValue}"
simple="true"
required="#{bindings.PartyNotes.hints.mandatory}"
columns="#{bindings.PartyNotes.hints.displayWidth}"
maximumLength="#{bindings.PartyNotes.hints.precision}"
shortDesc="#{bindings.PartyNotes.hints.tooltip}"
rows="5" id="it2">
<f:validator binding="#{bindings.PartyNotes.validator}"/>
</af:inputText>
</af:panelGroupLayout>
</f:facet>
</af:panelSplitter>
<af:spacer width="10" height="20" id="s5"/>
<af:outputText value="Registration Lines"
inlineStyle="font-weight:bold;" id="ot11"/>
<af:separator id="s6"/>
<af:commandButton text="Add Item"
disabled="#{RegistrationBean.disableAddItemBtn}"
action="CatalogPage" id="cb1"/>
<af:commandButton text="Search Item"
action="ItemLitsPage"
disabled="#{RegistrationBean.disableSearchCataBtn}" id="cb2"/>
<af:table value="#{bindings.RegLinesRegPageVO.collectionModel}"
var="row" rows="#{bindings.RegLinesRegPageVO.rangeSize}"
emptyText="#{bindings.RegLinesRegPageVO.viewable ? 'No rows yet.' : 'Access Denied.'}"
fetchSize="#{bindings.RegLinesRegPageVO.rangeSize}"
width="900" id="t1">
<af:column sortProperty="ProductCode" sortable="false"
headerText="#{bindings.RegLinesRegPageVO.hints.ProductCode.label}" id="c1">
<af:outputText value="#{row.ProductCode}" id="ot12"/>
</af:column>
<af:column sortProperty="Qty" sortable="false"
headerText="#{bindings.RegLinesRegPageVO.hints.Qty.label}" id="c2">
<af:outputText value="#{row.Qty}" id="ot13">
<af:convertNumber groupingUsed="false"
pattern="#{bindings.RegLinesRegPageVO.hints.Qty.format}"/>
</af:outputText>
</af:column>
<af:column sortProperty="UnitPrice" sortable="false"
headerText="#{bindings.RegLinesRegPageVO.hints.UnitPrice.label}" id="c3">
<af:outputText value="#{row.UnitPrice}" id="ot14">
<af:convertNumber groupingUsed="false"
pattern="#{bindings.RegLinesRegPageVO.hints.UnitPrice.format}"/>
</af:outputText>
</af:column>
<af:column sortProperty="Currency" sortable="false"
headerText="#{bindings.RegLinesRegPageVO.hints.Currency.label}" id="c4">
<af:outputText value="#{row.Currency}" id="ot15"/>
</af:column>
<af:column sortProperty="UsdAmount" sortable="false"
headerText="#{bindings.RegLinesRegPageVO.hints.UsdAmount.label}" id="c5">
<af:outputText value="#{row.UsdAmount}" id="ot16">
<af:convertNumber groupingUsed="false"
pattern="#{bindings.RegLinesRegPageVO.hints.UsdAmount.format}"/>
</af:outputText>
</af:column>
<af:column sortProperty="UsdPfiAmount" sortable="false"
headerText="#{bindings.RegLinesRegPageVO.hints.UsdPfiAmount.label}" id="c6">
<af:outputText value="#{row.UsdPfiAmount}" id="ot17">
<af:convertNumber groupingUsed="false"
pattern="#{bindings.RegLinesRegPageVO.hints.UsdPfiAmount.format}"/>
</af:outputText>
</af:column>
<af:column sortProperty="UsdTotalAmount" sortable="false"
headerText="#{bindings.RegLinesRegPageVO.hints.UsdTotalAmount.label}" id="c7">
<af:outputText value="#{row.UsdTotalAmount}" id="ot18">
<af:convertNumber groupingUsed="false"
pattern="#{bindings.RegLinesRegPageVO.hints.UsdTotalAmount.format}"/>
</af:outputText>
</af:column>
</af:table>
</af:group>
</f:facet>
<f:facet name="ActionButtonBarRegion">
<af:group id="g2">
<af:commandButton actionListener="#{bindings.Commit.execute}"
text="Save"
disabled="false" id="cb3">
<af:setActionListener from="#{false}"
to="#{RegistrationBean.disableAddItemBtn}"/>
<af:setActionListener from="#{false}"
to="#{RegistrationBean.disableSearchCataBtn}"/>
<af:setActionListener from="#{bindings.RegistrationId.inputValue}"
to="#{pageFlowScope.regToEdit}"/>
</af:commandButton>
<af:commandButton text="Home" action="HomePage" immediate="true" id="cb4"/>
</af:group>
</f:facet>
<f:attribute name="PageTitle" value="Registration Page"/>
</af:pageTemplate>
</af:form>
</af:document>
</f:view>
</jsp:root>
Regards !
Sameera
Edited by: samme4life on May 17, 2012 2:39 AM
Edited by: samme4life on May 17, 2012 2:42 AM

How to restrict update to a document in state release to the contribution g

How to restrict update to a document in state release to the contribution group.
Hi I’m working with UCM 10g and I want to know if it is possible to restrict the update over a document that is on state release for the group of users that made the check in of the document ?
thanks

Yes, it is, but IMHO in a rather complicated way:
- you could change the security settings (security group, or more likely, accounts) during the life cycle, or
- you could implement collaboration management, and change security settings via ACLs
Alternatively, depending on what you mean by "updating" documents you could also:
- check-out the document by a system account (if you want to prevent your users to check-in a new version)
- modify the GUI so that Update (metadata) action is not available to users (in theory, they could still access it via a direct service call) by a custom component
- introduce a Java event filter (enhancing the UPDATE service) where you will implement whatever logic you want
I would probably opt for the last options as it seems to me to be the cleanest solution (but yes, it requires some coding).

How to restrict S_ALR_87003642 - Open and Close Posting Periods entry/updat

How to restrict S_ALR_87003642 - Open and Close Posting Periods entry/update for certain group of users
eg. for Subsidiaries to openr/close periods of their own company only.
Refer to my screen, Company 1010 and 1060 is for Head Office while 1210 is for our Malaysia Company. How to restrict my Malaysia Company user to open and close only for 1210 and cannot perform any change to other Company.

Hi,
I guess you can use company code itself. Talk to your basis guy or else if you have some expertise & Authorization try out PFCG.
Regards
Santosh Hegde

How to restrict number of rows display using ig:gridView

Hi
All
How to restrict number of rows display using <ig:gridView datasource="{mybean.mylist}">
i am getting 10 rows using data_row . i wanna show only first 5 rows .
pageSize ="5" will be ok . but it displays remaining rows in next page. but i want to display only first 5 rows . is there any attribute to restrict number of rows.
thanks
rambhapuri

I have no idea which component you're talking about. If want to discuss here about a non-Sun JSF component, then please mention about the name, version and build in detail. You can also consider posting this question at the website/forum/mailinglist of the component manfacturer rather than here. At least I can tell you that the Sun JSF h:dataTable has the 'rows' attribute for that. I can also suggest you to just take a look in the TLD documentation of the component in question. There should be all possible attributes listed with a detailed explanation about the behaviour.

How to restrict the user(Schema) from deleting the data from a table

Hi All,
I have scenario here.
I want to know how to restrict a user(Schema) from deleting the values from a table created in the same schema.
Below is the example.
I have created a table employee in abc schema which has two values.
EMPLOYEE
ABC
XYZ
In the above scenario the abc user can only fire select query on the EMPLOYEE table.
SELECT * FROM EMPLOYEE;
He should not be able to use any other DML commands on that table.
If he uses then Insufficient privileges error should be thrown.
Can anyone please help me out on this.

Hi,
kumar0828 wrote:
Hi Frank,
Thanks for the reply.
Can you please elaborate on how to add policies for a table for just firing a select DML statement on table.See the SQL Packages and Types manual first. It has examples. You can also search the web for examples. This is sometimes called "Virtual Private Database" or VPD.
If you have problems, post a specific question here. Include CREATE TABLE and INSERT statements to create a table as it exists before the policies go into effect, the PL/SQL code to create the policies, and additonal DML statements that will be affected by the policies. Show what the table should contain after each of those DML statements.
Always say which version of Oracle you're using. Confirm that you have Enterprise Edition.
See the forum FAQ {message:id=9360002}
The basic idea behind row-level security is that it generates a string that is automatically added to SELECT and/or DML statement WHERE clauses. For example, if user ABC is only allowed to query a table on Sunday, then you might write a function that returns the string
USER != 'ABC'
OR      TO_CHAR (SYSDATE, 'DY', 'NLS_DATE_LANGUAGE=ENGLISH') = 'SUN'So whenever any user says
SELECT *
FROM    table_x
;what actually runs is:
SELECT *
FROM    table_x
WHERE   USER != 'ABC'
OR      TO_CHAR (SYSDATE, 'DY', 'NLS_DATE_LANGUAGE=ENGLISH') = 'SUN'
;If you want to prevent any user from deleting rows, then the policy function can return just this string
0 = 1Then, if somone says
DELETE employee
;what actually gets run is
DELETE employee
WHERE   0 = 1
;No error will be raised, but no rows will be deleted.
Once again, it would be simpler, more efficient, more robust and easier to maintain if you just created the table in a different schema, and not give DELETE privileges.
Edited by: Frank Kulash on Nov 2, 2012 10:26 AM
I just saw the previous response, which makes some additional good points (e.g., a user can always TRUNCATE his own tables). ALso, if user ABC applies a security policy to the table, then user ABC can also remove the policy, so if you really want to prevent user ABC from deleting rows, no matter how hard the user tries, then you need to create the policies in a different schema. If you're creating things in a different schema, then you might as well create the table in a different schema.

How to restrict users from printing documents and exporting to local file

Hi SAP gurus,
I have two questions.
1. How can I restrict users from printing a document? i.e. billdoc? I would like to know if I could block it though authorization. If yes, what auth obj to use?
2. How to restrict certain users from exporting to local file? the System> List>Save-->Local File. I have tried restricting it using auth object S_GUI but it seems it is only applicable to older versions of SAP. im on ecc6.
Thank you in advance.

Hi,
Check this:
Create your own gui status and attach it to the list in the event START-OF-SELECTION.
In the menu painter extra -> adjust template.
Make it a list status and you will see all the standard list options appear including list->download
Deactivate the ones you don't want.
If you just want to prevent users from downloading the list you can achieve this with authorization object S_GUI, activity 61. Menu option will still be there though.
Please note that if you remove authorisation for S_GUI activity 61 then all downloads will not be possible.
If you just want to disable downloads only for a particular report, you can try this test program:
Code:
REPORT ztest.
DATA: PROGNAME LIKE SY-CPROG value 'Z_CHECK_AUTH',
        FORMNAME LIKE SY-XFORM value 'F_CHECK_AUTH'.
START-OF-SELECTION.
    CALL FUNCTION 'SET_DOWNLOAD_AUTHORITY'
         EXPORTING
              FORM    = FORMNAME
              PROG    = PROGNAME
         EXCEPTIONS
              OTHERS = 1.
WRITE: / 'TEST'.
You also need this:
Code:
PROGRAM z_check_auth.
FORM f_check_auth USING pe_result TYPE i.
pe_result = 5.
ENDFORM.
Also have a look at the exit SGRPDL00.
Hope this helps you.
Rgds,
Raghu

How to restrict Group Currency to Version

Similar Messages

Maybe you are looking for