Re: USERS ACCESSED PARTICULAR REPORT IN A GIVEN PERIOD
Hi RAL and SAL should be able to helpYou could also use ST03 even if it is not meant for that usage... Regards Read Access Logging (RAL)Analysis and Recommended Settings of the Security Audit Log (SM19...
View ArticleRe: Multiple Users for Authorization Trace
In addition to all user and single fully qualified user names, you can also mask names. eg. RFC* But there are no select-options for lists. We had the same challenges and developed our own programs for...
View ArticleRe: SAP Business Objects Password Expiry
Hi Sibusiso Have you tried checking if there is a SICF service available to activate. Also, if NWBC HTML can somehow be used to grant users access to logons? This way you don't need SAP GUI deployed It...
View ArticleSAP BW AUTHORIZATION: Restricting key figure field
Hello Kindly help me with the following requirement. We have been asked to restrict most users from viewing the key figure salary amount from the query.I created an authorization analysis object and...
View ArticleWhat role needs to be assigned to the user to access existing custom OData...
Hi all, What role needs to be assigned to the user to access existing custom OData services? With SAP ALL its working. But cannot assign that to all users. Whats the specific role for this? I tried...
View ArticleClik here to view.
Re: Multiple Users for Authorization Trace
Hi Jon, In STAUTHTRACE this option is available for evaluation of trace, you can mention the selected users please refer the below screen. You can look for long term trace by activating param...
View ArticleRe: What role needs to be assigned to the user to access existing custom...
Hi, As usual you need to build a role by yourself based on your requirements. In case of Odata services there are two different TADIR services that needs to be added. One corresponds to authorization...
View ArticleIs S_RFCACL a critical Authorization Object ?
Hi All, As we know that S_RFCACL (Authorization Check for RFC User (e.g. Trusted System)) is required for having access to the trusted systems. In most of our roles for this authorization Object we...
View ArticleRe: Is S_RFCACL a critical Authorization Object ?
Hi Putting it in context, it is critical enough as to be excluded from SAP_ALL as standard.Have a look at SAP Note 1416085 - a snippet of which is: "...If you enter the full authorization (*) in one...
View ArticleRe: New version of sapyto - SAP Penetration Testing Framework
Hi there. I've been trying to download sapyto. I filled al fields including the captcha but the dialog said "Sorry, the code you entered was invalid. Go back to try again". I've tried several times...
View ArticleRe: SAP BW AUTHORIZATION: Restricting key figure field
Anubhav, lf 0TCAKYFNM is marked authorization relevant then you should be able to able to use range values to exclude the salary key figure (i think it is 0ANSALARY). Excluded operator is not valid for...
View ArticleRe: Multiple Users for Authorization Trace
Greetings Guru, Thank you for the suggestion. However, the desired approach is to designate select users before activating the trace. This is to reduce the resource being consumed in the memory while...
View ArticleRe: Multiple Users for Authorization Trace
Greetings Julius, Thank you for the suggestion.Though, kindly clarify the statement "you can also mask names. eg. RFC*"? Did you mean using wildcard(s) on the Trace Options? Or had you implemented a...
View ArticleRe: Multiple Users for Authorization Trace
Exactly. You can mask the end of the name in the field. Eg. RFC* will trace all users who's names start with RFC. But you cannot create patterns (eg. *RFC* = all names which contain pattern RFC) and...
View ArticleClik here to view.
Re: SSL Server Standard and SSL Client Standard PSE's missing.
Hello, I am facing the same problem and there is no error on the ICM and the HTTPS port does starts on ICM as per below log and still the missing SSL serever standard, SSL client SSL client, etc
View ArticleRe: Multiple Users for Authorization Trace
Hi Jon, if you want to go up to 5 users, please consider activating param auth/authorization_trace. Once you will activate param with value F, you need to go in STUSOBTRACE and specify up to 5 users....
View ArticleCannot load Query"XYZ"(data provider "dp_1": No authorization for requested...
Can somebody help me with this issue. FYI - The report is working fine when the we execute via RSRT, but the moment we execute the same on portal, we get this error message. All checks(ST01 and...
View ArticleRe: Multiple Users for Authorization Trace
Greetings Guru, How will the activation trace be activated? Is it through a different transaction code?As per checking in STUSOBTRACE, there are no buttons/options to activate the trace. Thank you.
View ArticleRe: Multiple Users for Authorization Trace
I suspect the guru meant the "change filter" button and misunderstood it. The system level auth/authorization_trace is not a detailed user based trace. It is a collector mechanism for the transaction...
View ArticleRe: New version of sapyto - SAP Penetration Testing Framework
As far as I know the age old instinct not to die was applied here -> the developers of the open source software realized that if you are good at something, then you should not do it for free. Your...
View Article