Re: Preparing test cases for authorization objects
Hi,I do not think your answer can qualify as "Correct Answer" in this case. It would be a good idea to leave your question unanswered (so you do not mislead people) or give a proper "correct answer" by...
View ArticleRe: RAL question
No luck yet Prabhu, I am looking at upgrading my SAP GUI and then open an SAP message as Patrick suggested above Pawan.
View ArticleRe: SAP, OpenSSL, and Heartbleed
A final follow-up on this thread: SAP has updated Note 2004805 with the status for many of their products. There are some products that are vulnerable, but AS ABAP, AS Java, and HANA are not...
View ArticleClik here to view.
Re: SAP standard roles for Mii inside of objects?
Apparently, Mii has some configuration where you enumerate the roles that can access certain connectors. I assume this is how data is moved or accessed. I am thinking this is what they were trying to...
View ArticleRe: SAP standard roles for Mii inside of objects?
Sorry, I was not expecting option C of yet another concept... :-( Thanks for sharing though! Good to know. Cheers,Julius
View ArticleRe: PFCG Authorization Updates
Hi Fawzy Ibrahim ,Is it means that, in each module there will be different BASIS people? Like the responsible to MM users cannot change SD users authentication? If yes then, there is a good...
View ArticleClik here to view.
Re: PFCG Authorization Updates
Fawzy, If the company you work for/contract for has to adhere to SOX compliancy, then you definitely do not want the Basis folks doing security. This is for the security team to define the...
View ArticleRe: SSO2 configuration for 4.6C R/3, Kernel 46D
Hi Vishal: The problem was solved by removing in SSFA the application for standar aplication that i have in my table. I remove it and everything works normally. Thanks! Ricardo Nolasco
View ArticleRe: Autorization not validated for Transaction S_aut10
hi, the check just regulates, what t-codes yopu may see in the result list. its called in method read-change_coduments (cl_s-aut-at_sel) line 256. Each t-code for which the check fails, is removed from...
View ArticleClik here to view.
Receive Background Job Log over Email
Hi Guys, We have a requirement where we need the job log for a background job over email. The job did not produce any spool so i don't need spool. I already know how to send spool via email. But, just...
View ArticleRe: Receive Background Job Log over Email
Hi ravi, Hope you are doing good.There is no standard way of doing this, the functionality doesn't exist. You can however configure SCOT and then send the job log PDF over email. Thank you and have a...
View ArticleRe: Autorization not validated for Transaction S_aut10
Hi Bernhard, Looks like that is not the case. We have granted access to only one T.code XD02 with s_saut_tcd authorization object. But when we do negative testing for some other T.code FB02 System Rc =...
View ArticleHow to Find SAP Security Note from NCICC Vulnerability?
Hi Community, we receive list of SAP and other vulnerabilities from NCCIC. For example:http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7355"SQL injection vulnerability in SAP BI Universal Data...
View ArticleRestricting Authorization for movement types for Storage Location
Hi Xperts I have a requirement that 313 & 315 material movements should not have any BBD/SLED check.However , 314 & 316 should have BBD/SLED check.Suppose there are two storage locations :...
View ArticleAuthorization issue while executing a Web Template in SAP BI
Hello All, I am facing an issue while executing a webtemplate . I have a webtemplate which is being executed by end user. The query uses a characteristic KPI identifier ,SBU,BU,product,...
View ArticleRe: Display User Sessions
Hi Alex,I also suggest use USR41 which will give you the required information Nishad Showkath
View ArticleRe: Restricting Authorization for movement types for Storage Location
Hi Soumick,You can try by creating 2 roles as given below. Role A - Tcode MigoBWART - 313 and 315for object M_MSEG_LGO field LGORT - give only A Role B - Tcode MigoBWART - 314 and 316for object...
View ArticleRe: System Recommendations Security Notes
You might get lucky and a coder from SAP will reply here, but I doubt it. you may want to contact the ASUG Influence Council for SolMan and ask the question. Or open an OSS message.
View ArticleRe: How to Find SAP Security Note from NCICC Vulnerability?
Start with Patch Day notes https://websmp205.sap-ag.de/securitynotesand also run RSECNOTEand to be really sure, open an OSS message and ask SAP. Not sure if there is a cross-list of nist...
View Article