SAP role for view only

Similar Messages

• Inserting Multipage PDF for view only-

  Help!
  I want to insert a three page PDF for view only.  I do not want this to open in a new window, I do not want this to download, I just want visitors to view the entire three pages vertically, or scrollable.
  When I insert the PDF I only get the first page.  I haven't had any luck with the google docs iframe HTML stuff (but I am admittedly very bad at that and could be missing something).
  I am not experienced, so please be clear and patient.
  Thanks!

  Another simple way would be to split the 3 page pdf into 3 one page pdf files.  Then drag each pdf file onto the iWeb page, resize and postition as required.  They get converted into image files.  Not elegant but will do what you want.  You can even add a frame of some kind around them if desired like this one page PDF example: Add PDF
  OT

• Design option for view only AM

  We are creating an ItemAM that will be opened, updated, and then closed. There will be two types of users that use this AM, those with edit capabilities and those with view only capabilities. Once the item is closed no updates are allowed, so the item will remain in a view only state. We are looking for some ways to model this. We want to maintain state when the ItemAM is opened by users with update responsibility. However, we do not want to maintain state if the item is opened by a user with view only. Once the item is closed we do not want to maintain state, since you cannot change the item. What's the best way to model this? Can a personalization be used to check the responsibility or item status and not save state when the item is brought up in view only mode? We anticipate that about half the time the item will be brought up in edit mode and the other half in view mode. I am looking for recommendations on the best way to implement this.

  It is not correct to think of AM being update allowed or not, VO is the one that captures the updates and applied it to the DB via EO.
  As far as your problem is understood, based on the responsibility, you either want the page/field to be update allowed or update not allowed.
  For this , you can make the beans render as read only when the page loads based on the responsibility
  or
  you can always have the page/bean as update allowed and in the submit action discard the changes based on the selected responsibility.
  Thanks
  Tapash

• "standard" SAP roles for Sales and Operations Planning (SAP SOP)

  Hallo,
  I´d like to ask SOP specialists, if there are any "standard" SAP roles, which could be created when SOP is implemented into the SAP system.
  If not, could you please send me advice, what is (are) the general role(s) for SOP (which SOP transactions and roles)?
  Thank you for your effort,
  Martin

  -->
  If you dont have the role --> open OSS
  if you dont find it because there are so many:
  Good luck :-)

• How to create SR Queue and Custom User Role for technician only see which SR assigned Him/Her and Resolve

  Hi 
  I have created workitem SR advance and Criteria with ID [Assigned To ME] and created user role in Advance operators.
  But in technician Console showing which SR he/she created not service desk assigned to him/her.
  Please suggest...
  Regards
  Sheetla Maurya

  I have find out Solution .......Create Queue with Service Request Advance and we not need to create any criteria option, After that create custom User role on Advance
  operators with View "Assigned To ME"
  Regards
  Sheetla Maurya

• Box for view only/non-updateable fields

  How can I create a box for a column in JHeadstart that is marked as non-updateable (Update Allowed = false)? I have tried some code in the Additional Properties but have not been able to find the mix. Using disable will put a box, but it dims both the lable and the value and is unacceptablely light.
  Edited by: user589963 on Apr 22, 2013 12:49 PM

  I tried a different approach by setting the attribute in JHeadstart to Updateable = False and then put this code in the Additional Properties space in Expert Mode:
  contentStyle="border:1px solid;padding:0 5px 0;"
  That created the box and it was not dimmed like it was when the field was disabled in JHeadstart before. But for all attributes that do not have a value present the box is elevated up into the field above it. The box is not elevated if there is a value in it. Appears to be a bug with JHeadstart. Was just curious if there is other code that would work in the Additional Properties space that would effect how the CSS displays the box.

• How to set new role for new custom entity only

  I created a new custom entity, I want to create new role for it only.  So I created new role and set custom entity User role. But When I login the user with created role, it show now right to access CRM.
  Awen

  Are you trying to grant access so that users can use this custom entity but no other data at all?
  You will still have to include access to all sorts of bits of CRM just to make the user interface work - especially the things on the Business Management and Customization tabs of your security role. You also need to check these 6 settings:
  Special privileges in CRM Security Roles
  If this is the only security role you plan to give to your users, I would suggest you start from a standard role and remove access to other entities, rather than start from blank and work upwards.
  Hope this helps.
  Adam Vero, Microsoft Certified Trainer | Microsoft Community Contributor 2011
  UK CRM Guru Blog

• SAP Best Practices on assigning roles for Auditors

  Dear Gurus,
  We need to set up SAP roles for auditors in or system for SRM ECC & BI.
  Could you please suggest on wich roles should be granted to the auditors as best practice to follow on?
  I will really apprecciate your help.
  Best Regards,
  Valentino

  Hi Martin,
  Thanks for your interest. I would be very happy to work with folks like you to slowly improve such roles as we find improvement possibilities for them, and all benefit from the joint knowledge and cool features which go into them. I have been filing away at a set of them for years now - they are not evil but still usefull and I give them to an auditor without being concerned as long as they can tell me approximately what they have been tasked to look into.
  I then also show them the corresponding user menu of my role for these tasks and then leave them alone for a while... 
  Anyway... SAP told me that if we host the content on SDN for the collaboration and documentation to the changes in the files, then version management of the files can be hosted externally for downloading them (actually, SAP does not have an option because their software does not support it...).
  I will rather host them on my own site and add the link in the SDN wiki and a sticky forum post link to it than use a generic download service, at least to start with. Via change management to the wiki, we can easily map this to version management of the files on a monthly periodic update cycle once there are enough changes to the wiki.
  How about "Update Tuesday" as a maintenance cycle --> config updates each second Tuesday of the month... to remove authorizations to access backdoors which are more than "just display"...
  Cheers,
  Julius

• Roles for Contact Person in MM-SUS Scenario

  Hi !
  When we create a contact person using the Create user option in SUS, we assign the roles to the contact person. These roles are basically the standard SAP roles for SUS. We have created Z-roles ( a copy of the standard roles) to restrict cetain txns for users and would like to assign these Z-roles to the contact person . How can we ensure that the Z-roles are displayed instead of the standard roles ?
  Regards

  Hi
  <u><b>Please go through these complete SUS-MM Configuartion detail links, which will definitely help  -></b></u>
  <u>Roles:</u>
  SAP deliver standard roles with authorisations, if You want to maintain your own go to transaction PFCG.
  There are two type of role:
  - single role
  - composite role - (one or more single roles)
  To roles You can assign transaction codes, reports, URL links, etc. SAP System automatically creates the authorisations that you can set on Authorisations tab page.
  <u>Authorisation:</u>
  Authorization profiles must be generated before you can assign them to users. An authorization is generated for each authorization level in the browser view, and an authorization profile for the whole role as represented in the browser view.
  Re: Clarifications on EBP-SUS and MM-SUS Scenario
  Re: Cancellation from SUS hangs in XI interface
  Re: Vendor Replication in SUS scenario
  Re: SUS-MM for service items
  Re: Central Person already exists
  SUS and Central User Admin
  Re: User roles.
  <b>Please look at following links for Roles and Authorizations </b>
  <u>Links for user roles:</u>
  http://help.sap.com/saphelp_nw2004s/helpdata/en/52/6714b6439b11d1896f0000e8322d00/content.htm
  http://help.sap.com/saphelp_nw2004s/helpdata/en/42/271d24d86211d2961a0000e82de14a/content.htm
  http://help.sap.com/saphelp_nw2004s/helpdata/en/e4/15e48efd6c11d296430000e82de14a/frameset.htm
  http://help.sap.com/saphelp_erp2005vp/helpdata/en/d3/559a4271c80a31e10000000a1550b0/frameset.htm
  http://help.sap.com/saphelp_erp2005vp/helpdata/en/4e/52b74065448431e10000000a1550b0/frameset.htm
  <u>For profiles and authorisations:</u>
  http://help.sap.com/saphelp_nw2004s/helpdata/en/52/67151e439b11d1896f0000e8322d00/frameset.htm
  http://help.sap.com/saphelp_erp2005vp/helpdata/en/20/efcbfed8a511d397110000e82de14a/frameset.htm
  Regards
  - Atul

• Tcode only view only display of the Stock

  Dear All,
  can anybudy tell me which tcode i asaign to sap user to view only display to View the Stock
  is it mmbe or mb5L coorect  or any other tcode i asgine
  warm Regards
  Pritpal Mehru

  Dear
  check out the MC tcode like
  MCSK, MC.2, MC.9, etc.
  full marks to me if solved.
  regds
  dev...!

• Read-Only Role For User Admin

  Hi, I am trying to implement a role that would enable a user to have the same functionality as the out-of-the-box User Admin role, but that this user would not be able to actually create or modify users, roles assignments, etc.
  The idea is to have a 'Display' role - with read-only access.
  The solution we are comtemplating right now involves getting the source code from SAP, copying it, and modifying it - disabling any interaction. We would then create new iviews, pages, etc from there only for this role. This is a tedious task.
  Any ideas on how else this can be done?
  Thanks

  I have only managed to do this by creating a role and assigning the relevant User Admin iViews to the role and then changing the End User Permissions on the role.
  I assigned the ReadAll Premission. That did the trick for me.
  Groups unfortunately require the manage_groups Permission, so we do not allow the viewing of groups.

• CUP "view" role for reviews

  Hi experts,
  Is it possible to create a role in UME only with "view"/"information" actions?
  So that the revisors only can check the tab "my work", "informer", "configuration" and cannot change the configurations?
  If I give a UME-User only all "View*" roles the tab "configuration" appears but not with all subitems?! Otherwise the revisor get to do modifications in the systems. Okay all modifications are marked in the logs but this is again work for the admins to check the log-files after each review.
  Is there any possibilty to go round this process?
  Thanking you in anticipation,
  Alexa

  Hi Alexa,
  Yes it is possible to restrict CUP Reviewer's access to only "My Work" and "Informer" tabs, or even certain options under "Configuration tab" though GRC AC UME role/permissions.
  I would advise not to give "Configuration" tab access to the reviewers, as it contains ADMIN only functionalities. This can be done by not assigning Action "ViewConfiguration" to Reviewers in UME.  Also not all "Viewxxx" actions should be assigned to reviewers.
  To start with you can use SAP delivered "AEApprover" UME role for CUP Reviewers and then customize the permissions in it to suite your requirement.
  Refer latest Access Control Security guide to know more on different Actions/permissions.
  Regards,
  Amol

• How to find SAP  java realted roles for ABAP and Basis

  Hi Gurus,
  I am new in SAP Security First week, I got the assignment to find the SAP Roles and Trans for ABAP and Basis in all Systems like Ecc, BI, ......
  I use SE16 ->AGR_TCODES then SAP* in Table Name it give me all SAP Roles and Trans.
  Pls help me to get only SAP Java and Basis roles and Trans Seperately
  Thanks

  Hi,
  Are you speaking about the standrad SAP roles? If yes, you can have a look at BC and ABAP roles. However, if your question is about the created roles, you should see the convention that was followed in your organization to identify the roles.
  Rgds,
  Raghu Boddu

• Which role that Take a iview use SAP GUI for HTML need ?

  hi all
      i made a transaction iview use the  sap gui for html,and this ivew add a role,the role add a user.and the user had only this role.when i use the user logon the portal,it will give me a error message:
    portal runtime error....
     whether it need another necessary role?
     and when i take the user to mapping user.i can't found any system that i had configration.
      but i can do all use admin user .
     what i can do?

  Use System admin -> System Config and find your system in the PCD (under portal content). Right click and open -> permissions. Find a user or group or role and give it the end user permission. I'd suggest the group Everyone.
  Cheers

• User - Role - view only

  Dear all,
  i have a question. I am developing a application to view some data from the database. This application will be on the laptops of all the people that are working all over the country. To prevent that a stolen laptop is used fore decompiling the software and getting the login procedure and some fool editting the data i would like to create a user with a view only mode on only one table.
  What is the correct way to tho this, make a user,.... grant a role..... etc etc etc ?
  What are the parts that this user must have in his role? And what are the parts he must not have in his role?
  Thanks already,
  Johan.

  I figured out that none of the "Exchange 2013" cmdlet will not be present on our machine by default., We need to import the Powershell Session
  before using the cmdlet and then to remove it when we're done using it. Below is the complete set of commands needed to perform this task:
  Open Windows Powershell.
  Get the credentials.
  $Cred = Get-Credential
  Create a remote PowerShell session
  $Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.outlook.com/powershell -Credential $UserCredential -Authentication Basic –AllowRedirection
  Plz make sure that the url given above is for Exchange Online only. 
  Import the cmdlets to the PowerShell
  Import-PSSession $Session
  Once the import is done, all the Exchange
  2013 cmdlets become available.
  We can then execute the cmdlet, "Add-RoleGroupMember"
  Add-RoleGroupMember -identity "View-Only Organization Management" -member PKS
  Finally, don't forget to remove the Session before exiting.
  Remove-PSSession $Session
  The only difference was that earlier I was not importing the PSSession before executing this cmdlet. Plz note that import is valid
  for any Exchange 2013 cmdlet and not just for this only.
  For further details, you can visit here