Hi Durga,
As you mentioned in your reply that code of IPHEADERLOgin moduleis availaible,
so can you please let me know from where I can get the code.
I need to implement the same login module.
Regards,
Anand
↧
Re: Enterprise Portal 7.3 Cannot login after loading loginmouldestack
↧
Re: Problems in NW 7.02 in STRUST Importing Verisign Cert Response
I guess you don't have the correct root and/or intermediate certificates. You can display each certificate with openssl, the chain has to be intact meaning the subject of the previous certificate has to match the issuer of the latter. You can also try to combine the root and the intermediate certificates in one and use a single -r. I can't help any further without seeing the actual certificate files.
↧
↧
Re: Problems in NW 7.02 in STRUST Importing Verisign Cert Response
Common Name:<redacted>
Subject Alternative Names:<redeacted>
Organization:<Redacted>
Organization Unit:<Redacted>
Locality:<Redacted>
State: Michigan
Country: US
Valid From: June 30, 2014
Valid To: July 2, 2015
Issuer: Symantec Class 3 Secure Server CA - G4, Symantec Corporation
Key Size: 2048 bit
Serial Number: 1f35ef327c4407348dbd9a9ee7e21fe7![Cert.png]()
↧
Re: Problems in NW 7.02 in STRUST Importing Verisign Cert Response
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:35:ef:32:7c:44:07:34:8d:bd:9a:9e:e7:e2:1f:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Secure Server CA - G4
Validity
Not Before: Jul 1 00:00:00 2014 GMT
Not After : Jul 2 23:59:59 2015 GMT
Subject: <redacted>
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Alternative Name:
DNS:<redacted>
X509v3 Basic Constraints:
CA:FALSE
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 2.16.840.1.113733.1.7.54
User Notice:
Explicit Text: https://d.symcb.com/rpa
X509v3 Authority Key Identifier:
keyid:5F:60:CF:61:90:55:DF:84:43:14:8A:60:2A:B2:F5:7A:F4:43:18:EF
X509v3 CRL Distribution Points:
Full Name:
URI:http://ss.symcb.com/ss.crl
Authority Information Access:
OCSP - URI:http://ss.symcd.com
CA Issuers - URI:http://ss.symcb.com/ss.crt
Signature Algorithm: sha256WithRSAEncryption
↧
Re: Problems in NW 7.02 in STRUST Importing Verisign Cert Response
I proceeded as follows:
- I opened up the certificate as received from Verisign in Windows.
- Under details I selected "Copy to File..."
- I exported in the format "Cryptographic Message Syntax Standard - PKCS #7 Certificates (.P7B)" and selected "Include all certificates in the certification path if possible"
- Continued to export to the .P7B file (which was now in DER Format).
- Opened the new P7B file by double clicking on it.
- Exported Each Certificate in the .P7b file to its own .CER file (In Base 64)
- Concatenated the .CER files extracted from the .P&B file in this order: Certificate, Intermediate, Root
- Copied the concatenated result into STRUST under "Import Certificate Response".
↧
↧
Re: PPOME - taking away transport request
Just wanted to share a word of caution from my experience working with PPOME.
I wanted to assign a user to a position (Release code workflow to work for Purchase requisition release strategy). When I tried in Production it did not allow me to save and got message that client is not modifiable.
Therefore I created a transport with new users adding to the positions I wanted and moved it to ECP. I assumed this would assign new users to the position that I am moving via TP and keep the existing user assignments in tact in ECP. Unfortunately, after this TP was moved all the existing user assignments disappeared except the new users (that existed in ECD organization structure).
After I read on SDN blogs I updated TRSP-CORR via OOCR tcode and moved the transport to ECP thinking this will allow me to do changes in ECP. But this did not help either so seems like my last resort is to make a request to open up ECP so I can update the user assignments to the positions directly in ECP.
↧
Re: Getting dump after implementing the Note 1640523
Considering this post is from 2012 have you searched marketplace for side effects/other notes that will fix it?
↧
Re: SM35 restricition
Peter,
We clearly mention in title it as SM35 restriction. And we want to restrict users to perform batch input from foreground and display errors option. User will only perform background processing.
This cannot be controlled with s_bdc_moni.
Regards
Chander Dubey.
↧
Re: Getting dump after implementing the Note 1640523
Hi
We had de-implemented the note, captured in the transport and get it removed from PRD system.
Also, there were some manual correction done by abaper.
Regards
Saurabh
↧
↧
Start and End dates for users in Enterprise portal
Hi Expert,
I have to maintain start and end dates for around 200 users in 4 different Java systems. When I export the file of users it does not capture the validity fields. Is there a way/script to automate this? Otherwise I will have to do it manually.
↧
Re: SM35 restricition
Hello,
I am sorry to ask again - but Batch Input has no direct relation to S_BTCH_JOB, that was why I was asking.
Batch Input online sessions in SM35 can be controlled via S_BDC_MONI and it's possibilites by using a naming concept in field BDCGROUPID and the options in field BDCAKTI, which includes ABTC (process Batch Input session). You can process the defined input online and in background.
Batch Jobs SM36/SM37 are related to specific reports and and a variant of them, you define them in each step. access can be controlled via S_BTCH_JOB as well as other objects like S_BTCH_ADM (consider option C for copy of jobs from template users but never Y for end users!) or S_BTCH_NAM. It is possible to schedule jobs online in dialog mode and for background processing.
So if you want to restrict SM35 access on each session then your only option to control access to listed sessions in the transaction SM35 from my point of view is S_BDC_MONI and a naming convention. Online / dialog input is controlled via AONL and analysis / protocol lookup via ANAL. The values are available in the documentation of the object. As far as I know there are no other options / workarounds to restrict the access in SM35 if we are not talking about Batch Jobs.
Regards
Peter
↧
Re: Active Table Logging T000 performance impact
Hi Savitha,
Thank you for these details. I have advised our SDM and with your confirmation of the T-codes, I can monitor and activate/deactivate the list of tables if we start experiencing issues as a last resort. I still need to refer to the SAP note too.
Regards
Paul
↧
Re: Multiple-Domain SSO Kerberos Authentication
HI Ugur
Specified target is unknown or unreachable?
↧
↧
Re: SAP table for Deleted Users
Dear Bjoern,
SAP system does not store first and last name for deleted user. It only stores it's user ID once deleted.
You need to get this information with the help of reference incident by which that user had been created.
BR,
Mangesh
↧
Re: way to get list of all the IDs maintained in various connections
Dear Deepanshu,
I am not well versed about dialog user usage in RFC connectors, but is it that way, my understanding is for RFC and JCO you should have non-dialog user to work.
BR,
Mangesh
↧
Re: way to get list of all the IDs maintained in various connections
You should find the tables rfcdes, tbtcp useful to get the list of userid's the rfc connections and the batch jobs definitions are using.
↧
Re: FD32--Some fields need to restricted for some users only..
Respected Otto,
Actually i am not aware of what is authorization object and its relation to parameters.(I am an SD Guy)
I got this from my client and want to check in IDES,also i dont have Basis Guy with me..
let me get some basic knowledge on this--and i will get back to you sir..I really appreciate your helping nature in helping me to come out of this requirement
Note To Lakshmipathiji: sir--as you are aware-- we can restrict some fields in FD32 with field groups in Financial accounting component.Here i created the field group and assigned the fields to this--but i missed assigning this field group (rather i dont know where to assign-- i am Missing something in configuration)--requesting you to transfer this thread first to Financials(so some expert in FI-AR can help me on this of filling the GAP in configuration)
Phanikumar
↧
↧
HR Time Entry and Self Approval
I have a scenario where a Time Administrator in HR entering time in CAT2 is not allowed to approve his own time entry in CAPS but allowed to approve other employee's timesheet.
I have maintained the infotype 0316 in P_PERNR with PSIGN value = E. the time admin can still approve with this authorization. am i missing anything ?
↧
Need to Give authorization SE16N in Customized Role
Hi,
Need to given Authorization for Tcode : SE16N to normal users , Where the User can Run and download data s but should not able to modify or Debug. Is there is any way to control through Object level.
BR,
Murali
↧
Re: HR Time Entry and Self Approval
Did you trace him? (or a test case in dev?) - can you provide output of STAUTHTRACE?
Any other general problems could be:
* Is P_PERNR activated in T77S0 / lookup with tcode OOAC?
* Is the object activated for tcode in SU24?
* Is the IT0105.0001 connection between SAP user and pers.no. valid in the current time frame?
But a trace will give a lot of feedback on the real issue. The setting with P_PERNR 0316 / PSIGN = E should be sufficient IMHO.
↧