Re: Question: Security Threat OSS Note 2067859
Check this blog related to BEAST. It's basically same thing. For older releases check this blog. But both systems are using ICM so it's same config option described in 510007. Cheers
View ArticleRe: Question: Security Threat OSS Note 2067859
I see the following explanation, but how would one know the SSL3.0 ones? A cipher name is a set of algorithms used for ensuring secure message communication. Let’s dissect a cipher suite name and see...
View ArticleRe: Question: Security Threat OSS Note 2067859
The first 3 letters of ciphersuite? Or am I misunderstanding what you are asking? BTW the POODLE similar to BEAST is attack against suite that uses block cipher in CBC mode. So you could keep...
View ArticleRe: Question: Security Threat OSS Note 2067859
LOL, my thought also. I checked my SOLMAN and didn't have anything like SSL30 but did see SSL20 so I wasn't sure.
View ArticleWhat would be following to: SAP Suggested Framework for role creation or...
When we want to propose a new Security Framework, should we change the way that SAP works? I mean, we have master role and derived ones, But I have worked in one client that doesn`t follow (at all)...
View ArticleRe: Restricting access to specific ledgers in new LG
Hi Senthil, I know this is an old thread. Did you get a solution? We also have the same requirement to restrict users to a ledger group. Can you please share?
View ArticleNeed to access different folder in same directory
Hi All,I have requirement. to access different folder in same directory here is below directory with different folders: I have 2 users user1 and user2 . user1 should allow to access the...
View ArticleRe: Need to access different folder in same directory
Hi Abhay to get you started.... which authorisation do you think controls this? RegardsColleen
View ArticleRe: Need to access different folder in same directory
Check S_ADMI_FCD RC=0 S_ADMI_FCD=ST0R;type=TR;name=AL11;S_ALV_LAYO RC=0 ACTVT=23;type=TR;name=AL11;S_GUI RC=0 ACTVT=61;type=TR;name=AL11;S_GUI RC=0 ACTVT=61;type=TR;name=AL11;
View ArticleRe: What would be following to: SAP Suggested Framework for role creation or...
Hi, The SAP auth concept and role mechanisms aren't perfect but they are what we are given. The scenario you have described is one way of doing it but tasks combined in composites is not the only...
View ArticleRe: Display role for all transactions
Dear all, This option is technically possible but in the real daily work is not a DISPLAY only. There are some transactions are not controlled or adjusted by ACTVT field. In these cases, the user has...
View ArticleClik here to view.
DSOs not visible in selection field - SAP BI security
Hi Experts, This is a BI 7.4 security question .While trying to provide authorization for certain DSO , I found that it is not available in selection field. Could you please guide me. In the below...
View ArticleClik here to view.
Authorization object undetectable by user / role
Hi experts, This is a ECC6 security issue.A user came to me asking for a transaction (YFP8). I assigned the transaction to the user by adding it to his composite role.User got the transaction, but...
View ArticleRe: Authorization object undetectable by user / role
Hi Ashod might be an obvious question but I'm going to ask it anyway....In SUIM did you mean to enter 3 or 03? RegardsColleen
View ArticleRe: Authorization object undetectable by user / role
Hi Colleen, I will make the user test. As for SUIM, it found my role.Really appreciate the help. Regards,Ashod
View ArticleRe: Authorization object undetectable by user / role
Colleen, Just made the user test.Still same issue. What else could the issue be?I am getting the same su53 again. Regards,Ashod
View ArticleRe: Authorization object undetectable by user / role
What investigation other than SU53 have you done? Did you generate the PFCG role and also check SU56 for the user buffer before retesting? If the user has then authorisation. If that fine... It's a Y...
View ArticleRe: Authorization object undetectable by user / role
I have done generation via PFCG and verified user assignment & role object by SUIM & PFCG. I have never used SU56 before, but everything is green after I executed it. I don't know what you mean...
View ArticleRe: Authorization object undetectable by user / role
asterisk was my mistake (it's late here) SU56... if you work in security I highly recommend you familiarise yourself with that transaction. Su56 is after all the User Buffer for authorisations. If it's...
View Article