Clik here to view.
Re: Unpersonalized users
What is the point of training these users if, after the four weeks are up, they will never touch SAP again? I do get the concern about the churn created by constantly creating and then invalidating...
View ArticleRe: Unpersonalized users
My current organization does not give external auditors access to the systems, so we have to pull the data for them. At my previous customer organization, external auditors, like everyone else who...
View ArticleClik here to view.
Re: Unpersonalized users
Wise! We are audited by the State annually, and in the fourteen years I have been with my current employer, managing our SAP system, only once has a State auditor asked for direct access to the...
View ArticleRe: Check which authentication method a user has used
I assume you can't restrict the ICF node to SAML only? The used authentication method is contained in the server object, attribute IF_HTTP_SERVER~AUTHENTICATION_METHOD. The challenge is that it has the...
View ArticleClik here to view.
Re: Unpersonalized users
The idea is that they (treinee, apprentice) are on a training for two to three years and are working with most departments (not IT of course ) for a while to get an complete overview of processes in a...
View ArticleRe: Unpersonalized users
Normally I make auditors sit with me and extract the data to stop them pulling tables and data without the context. It's frustrating as once the put a risk in a report that is invalid it takes a lot of...
View ArticleRe: Unpersonalized users
It seems to me that it would be easier, then, to still assign them their own named user accounts, which follow them for the duration of their stay at the company. Just switch the role assignments as...
View ArticleRe: Possibility to allow only digit based passwords in NetWeaver ABAP
Hi, why do you want to restrict only to numbers? Is it for mobile apps? You can allow passwords only with digits but why would you disable other characters? Cheers
View ArticleRole description change
Hey all, I have a question for all of you here: I want to make changes in the description of a master role and further to the derived roles. Is there a shortcut where i can update the description in...
View ArticleNeed to know regarding Authroization object S_PROGNAM
Hi Experts, During upgrade we have found switchable authorization object S_PROGNAM is getting checked in BW while trying to activate a data source through SE38. However, we have not found out any...
View ArticleLX16 Restriction to Specific Warehouse Numbers
Hi Experts, Currently i am facing a weired situation in restricting the transaction LX16 for one of client. Basic scenario is 1) User wants to exeute LX16 for only specified warehouse numbers/ plants...
View ArticleRe: Need to know regarding Authroization object S_PROGNAM
Hi That object is part of a reinforced control on submitted program.S_PROGRAM authorization check was only taking place if the program is assigned to an authorization group. 1946079 - Initial...
View ArticleRe: Need to know regarding Authroization object S_PROGNAM
Hi Expert, Could you please let me know how to check if the report is secured by the authorization group or it has empty authorization?
View ArticleClik here to view.
Re: Need to know regarding Authroization object S_PROGNAM
You can check it in SE38 [attribute]... and find that most of the programs do no have an auth. gpe defined !Check that great thread on that subject => How safe is S_PROGRAM?
View ArticleRe: Need to know regarding Authroization object S_PROGNAM
Dear all, There were some complaints about this thread as Somnath has not done enough own research and expects others to do it. OK, normally this will be moderated, but this special case is very new...
View ArticleClik here to view.
Re: Communication vs. System User Types
When I read your answers I feel like I hardly know anything in SAP security.
View ArticleRe: Communication vs. System User Types
Well... you used the search (winner) and now you know this (another winner), so you will be fine.. :-)
View ArticleRe: Could not validate SPNEGO token.java.lang.Exception: Checksum error.
The Wizard configuration can be handled via a keytab file, if you don't have keytab file then you have to supply all the values manually in SPNEGO wizard. Also you can check with the klist command in...
View ArticleSSF signature using SHA1 and digtal certificate
Hello May assist me I have a requirement that I sign data in an internal table using a certificate and then append the detached signature to a file which is to be sent to the bank. I have managed to...
View Article