Re: Prompt for Authorization Object
Hi, Various flavours of GRC all the way from Virsa days through to 10.1 have this sort of functionality - known as Risk Terminator. To use it in it's preventative mode is a complete pain and every...
View ArticleRe: Prompt for Authorization Object
Hi Alex, Thanks for the reference, but I need to correct it: We (Xiting) provide the ability to enrich SU24 so that decisions are transferred to the menu of the role as much as possible, and the...
View ArticleRe: Prompt for Authorization Object
Hi Julius "SOD type checks at time of trouble-shooting" - wouldn't that be risk simulation In GRC allowing you to check for introduced risks before changing the role? regardsColleen
View Articlemodify multiple roles
Hi, I have a requirement to modify multiple of roles with one transaction code. We have transaction code ex: xxxxxx exists in around 40 roles, but we replace xxxxxx with another t-code ex:******* How...
View ArticleRe: Prompt for Authorization Object
Thanks for the correction! I was getting confused with Blacklists and grey lists for role generation.
View ArticleRe: Does NW7.4 ABAP stack still not support usernametoken with digest password?
This does not appear to have changed: WS Security UsernameToken - User Authentication and Single Sign-On - SAP Library
View ArticleRe: Does NW7.4 ABAP stack still not support usernametoken with digest password?
Hi, Michael, It's some pity to hear that. any way, thanks for your reply. Do you have any idea if we can enhance the soap_security package?I mean, Can I modify the method VERIFY_USERNAME_TOKEN to...
View ArticleRe: Does NW7.4 ABAP stack still not support usernametoken with digest password?
I asked my experts about your question. On the client side we support this. We cannot support digest passwords on the server side. We save passwords in hashed format on the server side. To support...
View ArticleRe: Does NW7.4 ABAP stack still not support usernametoken with digest password?
Hi, Michael,thanks a million. you are so nice. Yes, I know the fact that the storage password is in some hash style. but I don't understand why theas java stack can support the digest password, and the...
View ArticleRe: Does NW7.4 ABAP stack still not support usernametoken with digest password?
No they don't keep the pasword in plain text. As I understand it, they chose yet another method, but I do not know what it is. In any case it is a design decision.
View ArticleRe: Does NW7.4 ABAP stack still not support usernametoken with digest password?
OK. Thanks again!Have a nice day! ----------------------------------------------------------fangzj
View ArticleHow to resolve intra role conflicts
Deal All, Need your help on approach that needs to be taken to remediate the intra role SOD conflicts arising for users in the system,I have explained them the details on how they can resolvewhich...
View ArticleRe: PFCG issue - removing transaction codes from menu and not clearing up the...
Hi Siva, Thank you for your time to replay me back. After making any change to the menu by removing/adding transaction codes from/ito the menu in the role nothing has changed in Authorization tab - the...
View ArticleRe: Prompt for Authorization Object
What our application does is that it does analysis of authorization relevant data as runtime and collects information about it. So there is no change to a role yet -> with terminator you must have...
View ArticleRe: modify multiple roles
Recommend you read up on imparting verse derived and if you are doing more security look at ADM940 course
View ArticleRe: modify multiple roles
Couldn't agree more about the training course. Trying to support SAP security without a solid understanding of how it works is not sustainable for long (or indeed, at all). Steve.
View ArticleRe: remote host supports the use of SSL ciphers that offer weak encryption
Hi Martin, this is exactly the ciphersuite I initially did suggest ;-)There are some more tools available to check the active cyphersuites of a server. For details you may for instance have a look at...
View ArticleAR 31 and AR32 - Edit and Create worklist
Hello Experts, I am facing a strange situation with AR31 and AR32. When we try to execute the transaction by test id's an error message comes starting "No data was selected". When I check with my id...
View Article