User is getting locked everyday
Hi,We have a user in BW system which is getting locked everyday since the past few days.This user ID is being used in Webi report publications and as a result the reports are failing.Pl let me know how...
View ArticleDisable changing variables during debug for a specific program
Hi, We've a program that we need to run ONLY IN DEVELOPMENT system (it will not be moved to QA or Prod). As all developers will have debug access, we some how want to restrict all users from changing...
View ArticleRSEOUT00 - CUA Child system disconnecting.
Is RSEOUT00 mandatory while disconnecting a child system from CUA. Please help me in understanding? I'd always done this while disconnecting CUA with one of the clients (organization) I worked for....
View ArticleDisplay/Edit the CRM transaction based on status value selected in status field
Hi Experts Is it possible to Display/Edit the CRM transaction(all assignment blocks in the Transaction overview page) based on status value selected in status field (using CRM security objects)? I am...
View ArticleJCo RFC-Call just from specific user
Hello People, i have a small security issue that i need to solve, and currently i don't know how i should do it, but i'm sure you people can help : ) I have a Java Webservice that connects via JCo to...
View ArticleEnquire authorization setting in material no. control
Hi everybody, Could you advice how to limit "create" or "change" activity for user under the following situation? Situation: some particular user can create or change that particular material number...
View ArticleRecommended Settings for the Security Audit Log (SM19 / SM20)
Hi Security-Folks, I like to discuss with you the recommended settings for the Security Audit Log (SM19 / SM20). Here's my proposal: Profile Parameters: rsau/enable = 1rsau/selection_slots =...
View ArticleClik here to view.
Unable to restrict access to Query Designer
Hello,We are facing an strange issue related to BI authorizations. We have torestrict users in query designer such that they cannot edit any querywith the name starting from Z*. They should be able to...
View ArticleSSL/TLS Protocol Initialization Vector Implementation Information Disclosure...
I just read blog How to Protect AS ABAP & AS Java Against BEAST AttacksNow I have some further question about ssl/ciphersuites. When I set it to 129:HIGH scan report says that "A vulnerability...
View Articlehow to resrtict va11 Tcode based on Plant??
HI,Need to Restrict the VA11 Tcode based on Plant ??
View ArticleGettings dumps CALL_FUNCTION_REMOTE_ERROR in solution manager for user...
Hello Experts, We are gettings dumps in SOLMAN for user SOLMAN_BTC. Short text "Error during call of SAP back end system (see long text)"What happened? Error in the ABAP Application Program...
View ArticleBest SAP Security Practices Print,file,job schedule, archiving
Hello All, i would like to know in your experience which will be the best practices for Security for this list below:- Printer security (especially check printing) - File path security for...
View ArticleSAP BI Developer Roles
Hello all, I am a BI developer on an Implementation project. We do not have a Security guy. and I am the only BI developer, lead, analyst whatever you may call. I have never done security and have been...
View ArticleParameter value in RZ11 and table TPFET differs
Hello! In order to check the value of several parameters in a SAP system we have in place a procedure that analyze that value against the table TPFET. In general it works pretty well (as far as you...
View ArticleClik here to view.
Restoring a single role out of a multiple role backup file
We have seen situations in different projects where we are supposed to take backup (bulk download) of many roles before a Go-Live of a Project. After Go-Live, if there is a requirement to restore only...
View ArticleClik here to view.
SAP Security - A sample to create ZSAP_ALL display only (Role) [ABAP AS only]
Hi Guys, This is my first document for SAP Security. I am new to this community and wishing a good time in SCN-SAP. The document contains how to create a Role for the Display only user. A display only...
View ArticleHow to restrict the users specific cost center/profit center in FBCJ...
Hello Guru's We have created multiple profit centers across india. So I would like to restrict area wise profit center to use the users. ex ; I have created for MUMBAI M001 to M009 range and for...
View ArticleSingle Sign On with ABAP WebDynpro
Greetings, I have a puzzle that I'm hoping that someone has dealt with in the past. We are working on impementing Single Sign On in our environment and we are mostly successful in our task. In our...
View ArticleEnquire authorization setting in material no. control
Hi everybody, Could you advice how to limit "create" or "change" activity for user under the following situation? Situation: some particular user can create or change that particular material number...
View ArticleSCUM Selection Greyed Out
Hi all, I am trying to enable settings in which will allow role assignment in BOTH CUA and child system. Unfortunately, the selection for "Everywhere" is greyed out in SCUA --> Role/Profile tab. In...
View Article