Denis Ontiveros wrote:
Question: would the German Data protection authorities have an issue with activating this level of logging?
Good point!
From a general point of view I would start with following assumptions:
1. Filter: Activate everything which is critical for all users '*' in all clients '*'.
-> mostly ok, details should be confirmed
2. Filter: Activate everything for users 'SAP*' in all clients '*'
-> ok
3. Filter: Activate everything for other support and emergency users, e.g. 'FF*' (FireFighter) in all clients '*'
-> ok (assuming that you already have agreed on using GRC Super User Management)
4. Filter: Activate all events for the dialog activities 'logon' and 'transaction' for user 'DDIC' in all clients.
-> ok
5. Filter: Activate everything for client '066'. This client is not used anymore and can be deleted.
-> ok
6. Filter: Activate RFC events (AUL, AUK, AU6, AU5) for a short time for selected users to identity RFC connection problems easily
-> you have to confirm this
7.-10. Filter: free for other project specific purpose
-> you have to confirm this
Keep in mind that you have to discuss (among others) log creation, consolidation, archiving as well as retention periods and deletion.