How to restrict users from saving a transaction in PCUI
Hi Experts,
I am working on a requirement where in I have to restrict the user from saving a followup up transaction if an order already exists for the same,in PCUI.I am able to display the error message in the PCUI screen but unable to restrict the user from saving the transaction.
I have implemented the CRM_COPY_BADI ,copy method to check the item copy and populating the message from there...The requirement is fulfilled in GUI by giving a abandon message which restricts the user from saving the transaction.but in PCUI the abandon message is not working..So is there any way to deactivate the save button for a particular transaction in PCUI and this is to be done from within the CRM_COPY_BADI..
I would sincerely appreciate any help provided on the issue..
We can do this by populating an error message in the Application log
Similar Messages
-
Restrict Users from saving files on Local PC but forced to Network Shared Location
Hi,
We have the Domain in Windows 2003 Standard.
How can I restrict users from saving files in their Local PC?
Also, need to forced them to save the files in Network Location with permissions...
Thanks.
~CoolPra~Hi,
You can create a file screen to prevent users from saving files on a certain volume. File screens are used to block specific types of files from being saved on a volume or in a folder tree. A file screen affects all folders in the designated path. You need
to update the server to Windows Server 2003 R2 to install the File Server Resource Manager.
File Screening Management
http://technet.microsoft.com/en-us/library/cc772675(v=ws.10).aspx
Best Regards,
Mandy
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
How to restrict users from printing documents and exporting to local file
Hi SAP gurus,
I have two questions.
1. How can I restrict users from printing a document? i.e. billdoc? I would like to know if I could block it though authorization. If yes, what auth obj to use?
2. How to restrict certain users from exporting to local file? the System> List>Save-->Local File. I have tried restricting it using auth object S_GUI but it seems it is only applicable to older versions of SAP. im on ecc6.
Thank you in advance.Hi,
Check this:
Create your own gui status and attach it to the list in the event START-OF-SELECTION.
In the menu painter extra -> adjust template.
Make it a list status and you will see all the standard list options appear including list->download
Deactivate the ones you don't want.
If you just want to prevent users from downloading the list you can achieve this with authorization object S_GUI, activity 61. Menu option will still be there though.
Please note that if you remove authorisation for S_GUI activity 61 then all downloads will not be possible.
If you just want to disable downloads only for a particular report, you can try this test program:
Code:
REPORT ztest.
DATA: PROGNAME LIKE SY-CPROG value 'Z_CHECK_AUTH',
FORMNAME LIKE SY-XFORM value 'F_CHECK_AUTH'.
START-OF-SELECTION.
CALL FUNCTION 'SET_DOWNLOAD_AUTHORITY'
EXPORTING
FORM = FORMNAME
PROG = PROGNAME
EXCEPTIONS
OTHERS = 1.
WRITE: / 'TEST'.
You also need this:
Code:
PROGRAM z_check_auth.
FORM f_check_auth USING pe_result TYPE i.
pe_result = 5.
ENDFORM.
Also have a look at the exit SGRPDL00.
Hope this helps you.
Rgds,
Raghu -
How to restrict users from creation of varients in report transaction
Hi All,
I have a requirement where buisness wants to restrict users in creating varients in report transactions.because of create options users will be creating more screen varients which will be disturbing for the other users to select a particular standard varient.Kindly give ur input regarding this
With regards
Girish AHi,
First edit the role assigned to users using PFCG.
Then go to Authorization tab and click on "Change Authorization Data".
It will opened up the profile of the role. now find the authorization object "S_PROGRAM".
In that edit "User action ABAP/4 program" object.
Remove "VARIANT" check box if it was checked and save. Now press
Generate button or "Shift+F5".
That's it.
You can ask for this to your basis team. They can perform this task easily. -
How to prevent user from saving file on local drives
Hi,
We have a file server set up on a Windows 2003 Server. Is there any way to restrict users so that they can only open and view the file but they can't save it on their local drives? If not, can this be done with Windows 2008 or 2012 or any Linux
server or any document management software?
Thanks,
JerryIf you can open the file from a client then generally there is not much you can do to prevent them saving it locally. Unless you restrict the clients access to save anything at all on their local hard drive which depending of the security requirements of
the data you are accessing could be a valid option.
Depending how critical / sensitive that information you could look at alternate method of accessing that file. In my experience securing important / secret data comes down to access procedures just as much if not more than technical solutions.
Maybe restrict access to that file to a handful of trusted users who can then inform the "untrusted" users of any information they need.
Like I say this is a procedural issue as much as anything else. -
Restrict users from saving own search in existing Named Searches
Hello,
I have created some Named Searches that will be used by the MDM users. These users are only allowed to use these named searches (in their search selections) but they are not allowed to 'overwrite' any of the named searches by their own search criteria.
How can I prevent the user from 'overwriting' the Named Searches?
Because even when I set the user role to "None" for all functions and "Read-Only" for all tables and fields, the user can still make their own search and Save that as Named Search (and thus 'overwriting' the existing Named Search which impacts also the other users that make use of these Named Searches).
We are using MDM 5.5 SP5 (5.5.42.106).
Or is this an autorisation bug in MDM?
Thanks for your answers!
Regards,
MarcelAll,
Just for your information:
We have upgraded to MDM 5.5 SP06 Patch 3 (build 5.5.63.57) and they have introduced new role feature to protect named searched to be overwritten (see also release notes of patch 3 - OSS Note 1234675).
So you can now change the Role (in MDM Console) and under section MDM Data Manager, you can set None or Execute for the function of Saving a Named Search.
If you set it to None, then the menu option in the MDM Data Manager of saving an search as a Named Search (and hence overwriting the named search) is greyed out. Only when you set it to Execute (which is automatically set during upgrade to thi snew version when the role has set it's Default function to Execute), then the user can overwrite the named search with his own search.
So, issue solved!
Regards,
Marcel -
How to prevent users from running PRC: Transaction Import from WebADI form?
Hi,
We are 12.1.3 and trying to create a workflow to approve Project transactions coming through web ADI before they become effective. To this end, we want to prevent users from running the PRC: Transaction Import from the Web ADI.
I know that if the checkbox Automatically run transaction import is not checked, the program does not run. But we want to hide this checkbox and not allow the possibility that the program could get triggered.
To this end, we updated the BNE_INTEGRATORS_B with source='C'. This allows you to edit the integrator from Desktop Integration Manager.
UPDATE BNE_INTEGRATORS_B SET SOURCE ='C' WHERE INTEGRATOR_CODE ='PAXTTRXB'
In the 4th step, where the value for Uploader Parameters is set, we have set boolean value to No. These are the fields on the page:
Parameter Name: bne:import
Display Name: Start Transaction Upload
Data Type: Boolean
Category: Field
Default Value: Boolean Flag: No
Description: start Transaction Import Concurrent Request
Display Options: Displayed: Unchecked
Display Options: Enabled: Checked
Display Options: Required: Checked
Prompt Left: Automatically submit Transaction import
Display Type: Check Box
Maximun Size: 100
Display Size:100
Now the checkbox is not appearing for the user to check it, But the program is automatically running when you hit Upload in the WebADI.Hi ,
Try removing the PRC: Transaction Import Program from the request group for the responsibility used by customers to submit the WebADI and then check if the program launches.
Regards,
Raghavan -
How to prevent users from saving and emailing intranet documents externally
Someone in our company needs to upload a pdf to our sharepoint intranet site for internal-only use. How can I prevent users from downloading it and emailing it externally?
I mean, a user could screenshot it I guess, but I need to give management a due diligence answer.You would need to look into a reverse proxy/firewall that had the ability to block access based on content. This isn't something you can accomplish out of the box with SharePoint (even with AD RMS).
Trevor Seward
Follow or contact me at...
  
This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs. -
SM58 - How to restrict users from viewing all the idocs?
Howdy,
The users want to be able to use SM58 to view any idocs that have failed. Unfortunately they currently can access the IDOCS of all countries, in addition to their own country. Does anyone know how we could restrict them?
Or if there another transaction that we could ask them to use?
Many Thanks!Hi,
You can restrict by the Transactional RFC Destination which should be different.
regards
Aveek -
How to restrict users from uploading malicious files(exe, dll,etc) & limit file size in a webform
Hello, please i have a file atachment field in a form on my site. I want to restrict the size of the file that can be uploaded and the type. It's a vacancy page and I want candidates to only upload doc and pdf files. I want to also limit the file size to 50mb only. How can this be done within the BC system.
Thanks.The file extension can't be trusted, like the mime-type it can be faked by a malicious user. Also this method can just be avoided altogether by anyone who has javacript turned off. Using javascript for this is not even remotely secure.
Isn't there a way to allow file uploading but specify a whitelist of filetypes (preferably checked using byte headers or some effective method) somewhere in admin?
Liam Dilley wrote:
Hey there,
You can do the file extension with jquery for example. The basic aspect of that is:
var ext = $('#my_file_field').val().split('.').pop().toLowerCase();
if($.inArray(ext, ['exe','dll','jpg','jpeg']) == -1) {
alert('invalid extension!');
So what is hapepning there is that it checks the value of the field when someone has added the file and checks the file extensiona and produces an alert but you can do as you need.
You could run this on hover of the submit button, on change of the actual file attachement field or on click of the submit button in the checks before it submits.
BC limits files to 100mb anyway so you should be ok on that front, they wont be able to be crazy uploading. -
How to prevent users from saving data in pdf
I have created several new pdfs for my communications center and would like to know how I can have these documents to be filled out but not have the info saved by the users? I dont want the original document to be lost because someone accidentally saved the info they were inputing into it. The forms I have created already have a print button at the top right corner so that is all I want the users to be able to do, fill it out, print it out, then close out original document without saving.
You can't prevent it absolutely, but there are some things you can try to minimize the problem, such as:
1. Provide a reset form button that the user can click to clear all of the fields, either with a Reset Form action or the resetForm JavaScript method.
2. Reset the form using JavaScript in the Document Will Save event.
3. Have the users set the file to read-only in the file system. -
How to restrict user from deleting record
Dear All,
Kindly share your experience...
Situation: My client have one SOB, used by several branches. Each branch has its own branch code in Chart of Account (accounting flexfield). Currently, to prevent branch accessing other branch's journal in General Ledger Module, we set account security (segment Branch) for each responsibility. In this way, batch header and journal header are still shared. Branch A still can see branch B's batch header and journal header, and even can delete the journals. This is very risky. Client urges to hide 'delete' icon from the toolbars and menu or disable 'delete' journal function for certain responsibility.
Questions: how to solve that problem without modifying the form?
Thanks,
KCYou may want to consider using the CUSTOM.pll. Basically its an "approved" way to do Form customization. You will need to understand basic Forms programming.
Metalink Note 73505.1 is fairly good.
There's also an OAUG white paper (2000) by Brad Goodwin
Ken -
Dear All,
We are having an infrastructure setup of around 500 client computers managed through group policy.
Recently the domain controllers have been migrated from Windows Server 2003 to Server 2008 R2.
Since this account requires extremely strict environment, we need to figure the solution for restricting the users from access anything locally.
It would be great if you can assist me with the following query.
How to restrict users logged on Windows 7 clients from accessing Windows Explorer and browsing other systems in the network through Group Policy with a domain controller running on Windows Server 2008 r2 ?
Can we disable Network Tab on the left hand pane ?
explorer.exe is blocked already, but users are able to enter the Windows Explorer by clicking on the name which is visible on the Start Menu.> * explorer.exe is blocked already, but users are able to enter the
> Windows Explorer by clicking on the name which is visible on the
> Start Menu.
You cannot block explorer.exe when you do not replace the shell - the
desktop you see effectively IS explorer.exe...
Your requirement sounds like you need a custom shell:
http://gpsearch.azurewebsites.net/#2812
Martin
Mal ein
GUTES Buch über GPOs lesen?
NO THEY ARE NOT EVIL, if you know what you are doing:
Good or bad GPOs?
And if IT bothers me - coke bottle design refreshment :)) -
How to restrict users in separate OU's from seeing each others presence
We have an Enterprise Lync 2010 server environment in place, and are using msRTCSIP-GroupingID to restrict address book lookups. We are now looking to restrict presence viewing to only user within the same OU. In other words it should not be possible
to see the presence of a user outside of your own OU, unless that user allows it explicitly.
It seems that the Multitenant pack for Lync can arrange that, but it's just not feasible to install that when you already have an active Lync environment in production. Is it possible to achieve this separation another way? Maybe with msRTCSIP-TenantId?
(which is already available in our current schema)Hi,
Using the GroupingID will completely separate the users into unique address books. But searching by SIP URI will always work and you cannot prevent the users from communicating with other Lync users in the same organization. If you want
to restrict presence viewing to specific users, you can try ABS Configuration Tool.
http://www.justin-morris.net/how-to-hide-users-from-the-lync-address-book/
Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found
there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.
Kent Huang
TechNet Community Support -
How can l block users from backing dating transactions
1. How can l block users from back dating transactions in SAP B1. It was discovered that, in production dept there is this allowance given to them to keep producing for the previous month in the new month; this according to line staff is to enable them meet up their monthly target, after a meeting with the management it was resolved to block that right of backdation of enteries. how can l correct this.
2. How can l change the decimal places backward in the general settings of administration of SAP B1( iniatially it was set to be 5 under Quantity now want to correct it to 3 how do l go about this).
JoelJoel,
By forum rule, one question for one thread. I will answer you the second: If you are using 2007 version, the option to decrease decimal place is not available. Check this thread to know more:
Re: REDUCE NUMBER OF DECIMAL PLACES
Also note: this forum is just for B1 system administration. Please post it on the main forum.
Thanks,
Gordon
Maybe you are looking for
-
Ok So i guess i learned the hard way that it is not good to force shutdown your MBP when you cannot log in. It fried my HDD. Now I tried a bunch of stuff to recover but nothing will work (Disk warrior, Tech tool, and stellar) I also tried to do recov
-
i would like to copy files from an external hard drive to my Mac. I intend to do this several times. Will Mac copy the same files every time or can it segregate and only copy new files from the external hard drive?
-
How to batch "Save As" in Photoshop CS3
My workflow includes picking photos from Bridge and opening them in Photoshop CS4 as Smart Object. I often have twenty or more photos open in Photoshop. Is there a way to batch "Save As" the photos (using the default name Photoshop gives them)? Other
-
Converting the quotation to the different Sales orders- with doc types
Requirement : My client wants to create the quotation from Lead and Opertunity.. Company sells the High tech sofware as well Maintanence, customer may buy both together or only hightech products But he both the products can go together up to Quotatio
-
How to Pass Multiple Value Range From Query ?
Hi, I have searched over SDN to find about how do we pass multiple value ranges from Query to SAP ODATA? But I have not found suitable answers so I am posting it here. If we need to pass a date parameter in Query which has a multiple range like sale