Difference between User Group in "Logon data" and "Groups"
tab in SU01
Answer Posted / sanketshingote
User Group under Logon data - It is used for Authorization check. Auth. Object S_USER_GRP(ACTVT, CLASS) will be checked. This is helpful to restrict admins to particular group. They cannot access the information from other group.
Groups Tab - This is a general purpose group. This is not used for Authorization check at all. Anything maintained or not maintained here doesn't make any difference. This was helpful when SUIM T-code was used for searching users with Users with complex selection criteria to get details of user assigned to particular group. This not not used much.
Example for User Group under Logon Data Tab:
Assume you have a Basis team and want to just access the users for this team, you will just create a group(ex.: Basis) for all these users and restrict the admin to just have access to the group(ex. Basis) with these users. The admin will then have access to only users under this group and cannot access other users at all.
Is This Answer Correct ? | 1 Yes | 0 No |
Post New Answer View All Answers
The user wants to create like a time table in BEX but when the open BEX its showing empty screen . in this situation what will u do.. And How will solve u …What r the steps u will take the to solve the solution..
Hi Experts, can any one let me know the Tables which we use for compliance calibrator & Access enforcer of grc and please let me know the background jobs of grc, Please it's urgent so please answer as soon as possible to these questions , I really appreciate your help, Thanks karunakar
How can I do a mass delete of the roles without deleting the new roles?
what is hypercare and go live support?
What every changes done exist role in development system that changes are not reflected in quality system, but transport is successfully moved?
How we Educated client personnel in R/3 Security and general Basis knowledge
What is sap cryptographic library?
how we Restrict the auth groups for table maintain, creating Auth group using SE54 to built new Auth groups to restrict tables via auth object S_TABU_DIS
Explain internet-level security?
what is the different b/w su10 and su12
could anyone tell me how we can copy the mass roles from sap_all profiles???????
A person has different user ids in different systems and you want to manage their authorizations centrally. Is it possible? How would you do it?
You want to remove a developer's and developer keys from a system. How would you do that?
What is a composite role?
Can you explain snc in sap security?