Hi,
Do you mean, if a user logged on a web ui, there is a link which will start a transaction launcher to launch a transaction code using webgui or windows gui. And you don't want this to happen for some users?
I believe if it is webgui, it is still possible to control the authorization for this user id with authorization object S_TCODE. Am I right?
Hongyan