BI Security Upgrade Question
Hi, in a BW 7.0 system we're moving from 3.5 security to 7.0 security. We have queries without variables or selection parameters that reference infoobjects that are defined as authorization relevant....
View ArticleClik here to view.
Solution Manager can tell me if any account is locked (ABAP)...wildcard edition
Someone posed the question to me, if Solution Manager has to be restricted to having to define all of the accounts that you want notifications on when then lock. Solution Manager can tell me if a...
View ArticlePlaceholders acceptance in auth.obj. S_DATASET-FILENAME
Hello, You may wonder if it's possible to use placeholders when maintaining the authorization field FILENAME within authorization object S_DATASET. For further information on that, please refer note...
View Articlet-code does not show in Menu tab but in Stardared S_TCODE obj in PFCG
I find a mismatch in pfcg. 1. t-code does not list in Menu tab2. t-code shows up in standared S_TCODE obj in Authriztion tab I'd like to know why this is happending and how to prevent it.
View ArticleHow to know if a security field in an object, is an activity type or if it is...
For Example, I have the security object CRM_BUHI, which has the fields: ACTVTHIER_TYPE I would like to know, which table in SAP identifies if the field is an activity type (such as the ACTVT is in the...
View ArticleAcknowledgments to Security Researchers
The SAP Product Security Response Team thanks all researchers and security IT professionals that helped with discovering and solving security vulnerabilities. Their findings have helped SAP to maintain...
View ArticleUnable to get assigned auth group in M_MATE_MAR
Hi Experts, I have been trying to restrict materials maintenance based on their assigned authorization groups.However I am unable to get the assigned authorization group in PFCG, while creating the...
View ArticleClik here to view.
Few instances of P_ORGIN are missing VDSK1 field
Hi Experts, In our landscape, we have converted VDSK1 (Org Key) to Org Field. There are a few instances of P_ORGIN where i cannot find VDSK1 field. Also, i checked in AGR_1251 & 1252 tables, the...
View Articlesent encrypted password to an sap server
Hi,i am looking for a solution so secure the login process except the use of scn. In my company the communication between the sap gui and the sap server is not encrypted. Is there a solution to encrypt...
View ArticleGetting started with SAML2.0 for ABAP
Hello I am attempting to setup SAML authentication for our ERP system as a Service Provider. My end goal is SSO for deliverying HR ESS/MSS via ABAP Web Dynpro (i.e. no portal involved). I have read a...
View ArticleUser renaming function not available in NW Release 7.3
Hey all, You may have observed that you are no longer able to rename users as of NetWeaver Release 7.3... Please be advised that this feature has been removed in standard.For further details you might...
View ArticleMaking Key figure Authorization relevant in Analysis Authorization
Hello, I want to make restriction on Key figure in analysis authorization. Please suggest how I can do that. I have made 0TCAKYFNM as auth. When I add 0TCAKYFNM this to analysis authorization it gives...
View ArticleHow to determine SRM Portal role for corresponding SRM backend roles
Hello Dear, I am creating SRM roles in backend system for employee self-service,approver and requisitioner. The users who will have these roles in ABAP SRM7.02 also need portal permission in SRM...
View ArticleWhen you should execute SU25
Whenever SAP delivers an upgrade or enhancement, the authorization defaults are significantly changed. To transfer the new/updated authorization defaults from the SAP area (SU22) to the Customer area...
View ArticleIs there any harm on changing user SAPCPIC's password?
SAPCPIC user was used in older releases (less than 4.0) for communication via RFC between ABAP systems. SAPCPIC was used mainly by program SAPXPG in order to return the delivery outputs of external...
View ArticleSAP ESS & MSS
We have ESS and MSS. We are using standard FM FM_HROM_GET_MANGR_ASSIGNMENT to fetch the object id in structural Profile instead of giving any static value for object id. Will one manager structure...
View ArticleEHP6 upgrade queries
We are going to upgrade to EH6 and I have few queries related to security. 1. All the documentation and forum post related to upgrade suggest, that the su25 security activities begin during the "EHP6...
View ArticleCreate certificate with Signature Algorithm "SHA1"
Dear experts,When i create a private key from the Netweaver Administrator of our SAP PI 7.11 SP1 environment, this private key contains Signature Algorithm : md5WithRSAEncryption.Our service provider,...
View ArticleError while starting SAPRouter with SNC
Dear All Guru, i'm having a problem due to configuration SAPRouter, when i'm trying to start SAPRouter with command c:\usr\sap\saprouter>saprouter.exe -r -S 3299 -V 3 -K "p:CN=WINDOWS-RF5AN42,...
View ArticleHow to solve error number 5 during generation of derived roles
Hey all, I have seen several cases in which the system pops up message no. S#377 when you're trying to generate the authorization profile of derived roles... Most of the times, the root cause of this...
View Article