Re: Extracting detailed information on auditing
Hi, Those records are change records so SAP will write when something is changed and only when it is instructed to write the record. For more detail on every change table you will have to investigate...
View ArticleSAP Portal 7.3 EhP1 - Active Directory LDAP error codes
All We're switching our portal across from authenticating external users on a standalone LDAP to a dedicated MS Active Directory Domain for external users.The portal is configured ( test environment )...
View ArticleRe: Extracting detailed information on auditing
Hi, thanks for sharing your experience. So do you think that it's a right tool and it addresses requirement mentioned by Suraj? Thanks
View ArticleRe: Extracting detailed information on auditing
Hi Martin,. I am not getting the exact report as Suraj mentioned, but i have solved most audit queries by the RAL.
View ArticleRe: capturing auth check in background for functional testing
Hey Julius, Did this ever progress to an actual product available anywhere, either through SAP, or through a 3rd party? I searched around a little on marketplace, but didn't see anything. May be...
View ArticleRe: SAP Portal UME and SAP ABAP LDAP
No, the only way to have the AS ABAP passwords in sync with your Active Directory is to use a IDM product that provisions the passwords to all connected systems including Active Directory, AS ABAP,...
View ArticleRe: SAP Portal UME and SAP ABAP LDAP
Hi Samuli, Enable SSO to AS ABAP using Windows credentials -- means user login to their terminal and then login to SAP Gui without typing the password? If that solution is available again without...
View ArticleRe: SAP Portal UME and SAP ABAP LDAP
That's what I meant. In case of non-Windows environments the only non-commercial product is the MIT Kerberos library which SAP doesn't support. See this discussion thread for reference. In Windows...
View ArticleDigital signature and special characters in message
Hallo, We have scenario sending messages from SAP PI to SAP ECC by using SOAP 1.1 message protocol and WS (message signing). Due to some circumstances we can't use XI protocol. Everything work ok.......
View ArticleRe: Digital signature and special characters in message
Hi, quick workaround would be to encode content with base64 in PI, sign it and then send it to ECC. This would avoid any issues with special characters. If PI is hashing < and ECC converts it to...
View ArticleRe: SAP Portal UME and SAP ABAP LDAP
He doesn't have to license NW SSO product, since there are other products available from SAP partners. SAP NW SSO is just one option to consider :-)
View ArticleRe: Authority check for called transactions
Hi Naveen, understand like this - Transaction Codes are nothing but package of Authorization Objects. user to execute any tcode required all its related authorization objects(as per SU24 setting)...
View ArticleRe: Setting up the S_tcode Range of T code
Hi, its surprising that you are using SAP_ALL and then putting S_TCODE range, as Julius says it's silly because it will overwrite Tcode range and give access to all tcodes. Now technically this to...
View ArticleRe: Plant wise/ Business area restriction on FBL3n and FBL5N
Hi Praneeth, Can you elaborate , how to check IMG authorization uncheked or not. Plz provide us Navigation for the same. We are facing same while using FBL1N tcode Thanks in Advance !! RegardsSantosh
View ArticleRe: SSL/TLS Protocol Initialization Vector Implementation Information...
I was not even aware that SAP had done something nor that some support requirement existed. Pity that Peter's blogs are tucked away in his own private area and not the general security area or at least...
View ArticleRe: Digital signature and special characters in message
Have you checked note 1836762 - Wrong signature digist for Web Service SOAP fault message Here is a comment from fix from this note. IF l_part_new is not initial.* when the messages need to be...
View ArticleIdentity Provider Initiated SSO2 with SAML2 - ABAP 7.4 - How ?
How can we on ABAP 7.40 system authenticate a SAML assertion with X.509 payload.The root certificate can be loaded as per x.509 log on scenarios. X.509 ticket use with users managing personal key store...
View ArticleRe: Identity Provider Initiated SSO2 with SAML2 - ABAP 7.4 - How ?
Hi, I haven't tried this so I am guessing here. BU I would try to implement standard service provide initiated SSO with front-channel communication. In OASIS spec in section 5.1.4 the fifth step is to...
View ArticleField Level Authorizations on SAP ECC - UI front end
Hello Security Gurus - Before I start with my question - here's a lil background.We are on EHP7 for SAP ERP 6.0 with release 740 SP level 0004, SAP_UI 740 SP level 0005.We have a very peculiar...
View ArticleRe: Field Level Authorizations on SAP ECC - UI front end
Hi, you probably already understand this but I want to put stress on this. In case of UI5 you can't trust client. So for example if you a have a service that gives you PO details and it is consumed by...
View Article