Re: Concern on SAP Security
Julius von dem Bussche wrote: I completely agree with Personally (as a vulnerability researcher) I have found that it is more difficult to find real hacks which take complete control of the system. So...
View ArticleThe password change of User id created in OS level for SAP
Hi Support, In our SAP environment , the SAP Application and Database system are in 2 different system with the Operating system being Oracle Solaris 10. In the SAP application server we have the...
View ArticleRe: PRGN_COMPRESS_TIMES in SAP R/3 4.6
Hi, not in standard in 46C....Suggestion for a manual approach:- read assignments from table agr_users.- Filter outdated assignments.- Pass the rest to bapi_user_actgroups_assign (through a wrapper...
View ArticleRe: Can a .Net application get the LogonTicket of an authenticated portal SSO...
Thank you for your reply.Our customer won't use SNC for whatever reason. The OSS note says what I shouldn't do but what I can do instead is very wishy-washy. Do you have a suggestion of a forum where I...
View ArticleRe: The password change of User id created in OS level for SAP
Hi Tony, You need to keep all the OS SAP IDs as password non- expire. In case if you need to change in any circumstance, then you also need to change in all other places where required. For example any...
View ArticleRe: Can a .Net application get the LogonTicket of an authenticated portal SSO...
SNC is the best solution for this, using an SNC library that has Kerberos support so you can use the credentials of the user at the .net application server (delegated). This is actually very easy, very...
View ArticleRe: Concern on SAP Security
Martin Voros wrote: Regarding HANA I do not have any data so it is hard for me to judge. But I can imagine that security is not one of the top priorities when SAP is rushing to get new product to...
View ArticleRe: Concern on SAP Security
Hi, many authorization concepts is definitely an issue for many customers. Unfortunately, I don't think that there is a grand unifying authorization concept that can be applied to all various business...
View ArticleClik here to view.
Re: Authorization field for SAP Standard Field
Hello Julius, Thanks for your wonderful explanation.I am not a developer, so I need to take the help of a Developer in this.They have came up with the requirement for restricting in MM* T-codes...
View ArticleRe: Concern on SAP Security
Hi everyone here, Thanks for your responses, we did get insights into SAP security through this and we would consider all your points mentioned valid suggestions to work towards having a secured SAP...
View ArticleRe: S_RFCACL not editable in release 701?
Update:AUTH_FLDINFO_TMP was not updated with correct data, as the join in the defintion of DD04VV was missing (SAP note 2107390, 1993453,...). After creating the join, the table was filled correctly...
View ArticleManager of one PA able to see details of another PA
Dear All, We have 2 roles, one is a Manager Role which is based on structural authorization but have access to PA * and another role HR Admin which is specific to each Personnel Area.Problem is...
View ArticleAccess required for BW consultant in ECC systems
HiIs there a standard profile which a BW consultant should be assigned in ECC systems for areas covering (Sales, Billing, HR, CO, FI, CRM etc). A BW consultant requires access to different tcodes based...
View ArticleRe: SSO issue after kernel upgrade from 7.00 to 7.21 EXT
Hi Amer, How did you resolved the issue, i am also facing the same issue after kernel upgrade from 700 to 721. Can you please share how you updated the libsapcrypto.so files. Did you copied from the...
View ArticleRe: Best way to control display authorizations to GOS (attachment list) in XK03
Thanks Martin !! Yep I was able to achieve the required granularity of authorization via BADI GOS_SRV_REQUEST. Thanks again !!
View ArticleRe: Can you help me understand Adobe Document Digital Signatures and how it...
Matt, Thank you for the helpful and detailed information. I now understand better how ABAP and JAVA stacks are used and how they communicate with each other. However, if we look at the user...
View ArticleClik here to view.
License_admin - user consolidation issue
Hi,Can any experts point to me as to why when trying to execute LICENSE_ADMIN to consolidate the results, I am stuck at the screen whereby it says that "Caution: The data is not current. After the last...
View ArticleRe: License_admin - user consolidation issue
Anyone has any idea? really appreciate for some hints and tips
View ArticleRe: No authorization for Write trip 0000000000
Check user authorization to create trip. Check for authorization object P_TRAVL and provide value 'W10' to object AUTHF (Operation and "Old Status"). Hope this will solve your problem. Thanks
View Article