November 22, 2012



1)  A user is asking for a t-code to assign? How do you assign the t-code?
First we have to check if user has access to particular tcode. If not then run suim with roles by complex 
selection criteria -->put object1 as S_tcode as the required tcode and hit execute button. The query will 
fetch you a result of roles. Select a role that has minimum authorization and satisfy the user requirement. 
And assign the role to user.

2)  A user is not able to execute a t-code; how do you solve that? What are the different reasons that might be existing?
1. Tcode does not exist
2. User context missing auth for that tcode
3. User comparison is not current
How to solve:
1.check if the user is having the tcode or not.
by SUIM--> role by complex selection criteria [s_bce_68001425]
2. if the tcode is not assigned to user -->assign suiatablle role after taking approval. Make sure to user 
compare to update the user master record
3.if the tcode is available for the user and user still cant access--> ask for result of SU53 screen shot, 
 there might be some other authorization which is missing for the user
4.we can also trace the user's auth check by use of st01 fine searching user's missing access by analyzing 
 st01 report and rc. 

3) What is difference between se16 and sm31?
SE16: table display
SM31: table, view modification

4) What are the authorization objects which are always present in user master record?
For user master record as u must be knowing that different tabs of UMR..So as per my understanding As 
UMR stores information of users...Like his name, roles assigned to him, License data.
Objects which are always present for UMR are:
S_USER_AGR, S_USER_GRP,S_USER_AUT,S_USER_PRO and each of this object has its own importance...
bcoz S_USER_AGR helps to maintain roles assigned, S_USER_GRP helps to maintain Auth. group 
in Logon Data and S_USER_AUT AND S_USER_PRO helps to maintain set of Auth. profiles and different
Authorizations included in each profile.

5) What is use of System Task Tab on menu bar in PFCG?
Role creation, change and delete.
6) How can we Lock transaction? What happens exactly?
In SM01 transaction we can lock the transactions; we can lock one or many at a time in the system.
After locking transactions, it won’t allow any body to use the transaction.
SM01 transaction can use to lock the transactions; we can lock one or many at a time in the system.
When a user starts a transaction, the system checks in table TSTC whether the transaction code is valid and
 whether the system administrator has locked the transaction.
7) What is Use of SM35P and SM35 is there any difference between these two?
Tcode SM35P use to display/monitor sessions. Using Tcode SM35 you the run/process the sessions in background
 or foreground.

8) Is there any transaction to see Transport Log.? Means, Which data or roles have been transported from which system at what time?
SE01 transaction is use to see Transport Log. 
By clicking tab "DISPLAY" you can able to see the logs.
You can also see the roles or data has been transported from which system at what time.
9) Which role is commonly used?
Composite and single role commonly used.

10)  How to find the already locked users list before a particular date?
Example: list of users already locked before 01/01/2010
Goto SUIM - USERS - USERS BY COMPLEX SELECTION CRITERIA,scroll down to the bottom, 
goto ADDTIONAL SELECTION CRITERIA, then give the validity date and check the check box of the option
LOCKED USERS ONLY, then execute, u will get the list of the locked users.