SU25 UPG ENHP : how to find modified roles?
Hi All,our old contractors has executed during July month some steps of the trx SU25 after we have upgraded the EnhP on the Sandbox. Most probably he executed the following steps: a. step 2B. compare...
View ArticleSecurity in SAP transport Management
This blog is written in an effort to raise more awareness on securing your SAP infrastructure. In this case specifically on the topic of securing the SAP Transport Mechanism. Over the past years there...
View ArticleDisable change authorization in debug mode for single class
We wanted to disable some "Generic Object Services" such as attachment list / create attachment. So certain users are not allowed to see the attachment. We achieved it using SGOS to Substitute...
View Articlemerge PFCG menu at user level
Hi, I want to merge the menu of two different PFCG single roles when they are assigned to the same user. For e.g Role A Role B Menu A...
View ArticleHow to know if a security field in an object, is an activity type or if it is...
For Example, I have the security object CRM_BUHI, which has the fields: ACTVTHIER_TYPE I would like to know, which table in SAP identifies if the field is an activity type (such as the ACTVT is in the...
View ArticleHR-Security: Restriction at PSA/Orgkey(VDSK1) wise
Dear Experts, I have one business requirement where HR Users should be restricted by using PSA/ VDSK1 (Org key).(Org key and PSA's are same values). Ex: in my client , we do have 175 org keys(PSA's)...
View ArticleCUA Company address specific for each child system
Dear colleagues, we have a CUA model with two child systems for two companies. Company address is specific for each system because each company has its own system. So I have set up standard address in...
View ArticleAcknowledgments to Security Researchers
The SAP Product Security Response Team thanks all researchers and security IT professionals that helped with discovering and solving security vulnerabilities. Their findings have helped SAP to maintain...
View ArticleLock or delete of SAPCPIC and TMSADM users
Hello All, We have the standard users from SAP which gets setup in the Productive clients also with their standard password maintained. So it showing RED mark in the Early watch reports which is used...
View ArticleHow to read user name - SAML2
Hi,I've get configured our NW Gateway system (NW 7.31) with external identity provider by SAML2, so our web apps (web dynpro and SAPUI5) are now accessible for people who don't have account in our SAP...
View ArticleSNC: Problem implementing SNC on a system with multiple instances
All, So I followed this document (yes, one of my own creation) to implement SNC on our QA system. Unlike our development/sandbox systems, our QA system has multiple application instances (two, to be...
View ArticleWhen and where does the profile S_A.SHOW come from?
I am trying to setup a 3rd party password reset product and in the documentation they ask you to create a profile based on other "included" profiles. One in particular S_A.SHOW Basis: Display...
View ArticleLink between end-user field and authorization object
Hi experts, I am having a hard time finding the information below, so if anyone can help me that will be great. I am trying to link the field an end-user handles and the associated authorization...
View ArticleSAP instance doesn't come up after setting up SNC
Dear all,we're in the process of implementing SSO for SAP Application servers on our IBM AIX infrastructure. We performed all the steps related to the intitial configuration as:- installing the...
View ArticleRoles show old Activities for Object S_ALV_LAYO
Dear All, I am a ABAP'er but have received a issue for Roles.We have a issue that a Role already had Authority Object S_ALV_LAYO assigned. After SAP Upgrade Authority object S_ALV_LAYO has only one...
View ArticleAuthorization concept migration from SAP HCM to Success factors Employee Central
Hi, How do we migrate our existing SAP roles in HCM to Success factors Employee Central' Role Based permissions? We are presently using SAP customied roles for our core HCM functionality and we are...
View ArticleHow to restrict basis related tcodes from profile SAP_ALL
Hi Experts,i am new security moduel. I want to restrict basis related t.codes from SAP_ALL but all other module tcode must be excute by Users.please help me to sort out. WR,PHB
View ArticleSU25 UPG ENHP : how to find modified roles?
Hi All,our old contractors has executed during July month some steps of the trx SU25 after we have upgraded the EnhP on the Sandbox. Most probably he executed the following steps: a. step 2B. compare...
View ArticleSAP Charm Tool License Cost and Information Requeset
Hello, We are considering to implement a transport management tool. We wouldlike to implement SAP Charm Tool for our SAP Solution Manager toutilize the Charm features and capabilities. Since we already...
View ArticleSSL Server Standard and SSL Client Standard PSE's missing.
Hi, Title: SSL Server Standard and SSL Client Standard PSE's missing. iam about to configure strustsso2. But i cant find the above PSE's in this transaction. When i checked Transaction SMICM - Trace...
View Article