Acknowledgments to Security Researchers
The SAP Product Security Response Team thanks all researchers and security IT professionals that help with discovering and solving security vulnerabilities. Their findings continuously help SAP...
View ArticleAdjusting the rolemenu
Hello Folks, I would like to know how to adjust the rolemenu of a role.In productive system the rolemenu looks fine, in development system it does not look fine.So I would like to adjust the rolemenu...
View ArticleSRM7 - External number screen
Hi, When users login to SRM7 and access Contract management then click on “create central contract” as in screen1, a pop up screen(screen 2) should appear where they can enter External number. This...
View ArticleUser logon session restriction
I would like to restrict logon hours for few user sessions ... I mean one user may create a session between 10:00 to 18:00 on weekdays and other may have the facility between 14:00 to 22:00. how to...
View ArticleOrganizational, technical or a workload problem?
All sorts of problemsBad things can happen to your authorization concept for many reasons:The security department lacks the education and skillThe security department is understaffedExternal service...
View ArticleML81N - Display only Line Item & Restrict Accept Flag
Hi, I have these 2 requirements from the business and need expert opinion on it: 1) My users have this issue wherein SOME users use ML81n to create the SES and then goes to the PO to get the PO line...
View ArticleHANA Analytical privileges transfer to BO User
Hi,If I have an analytical privilege for a user for him to see only data for Country = US, how do I make sure he has this restriction when the same username views a Webi report built on one of these...
View ArticleTcode Open for processing Even with Closed Client.
Hello Experts I have a query. We frequently used to create CITY codes earlier using Tcode OVKG earlier directly in production system even whenthe client was closed for processing.Now from a few days ,...
View ArticleNW 7.4 ABAP IdP initiated SSO only required
Hi all, I have NW 7.4 SP6 gateway. In saml2 tcode I configured gateway system as services provider. I also created trusted provider (compny has commercial IdP) by importing metadata, Sp metadata was...
View ArticleNeed to control Price field in ME21N through object level
Hello, Need to control User access to field like Prices in PO (ME21N / ME22N/ ME23N) based on plant and document Type. For above requirement , i have created a temporary role and i am able to control...
View ArticleS_TCODE vs menu transactions search issue
Hello experts, I am currently trying to remove a transaction from a composite role.Since it is a composite role, it should usually have a single role in it that has the transaction, from which I should...
View ArticleLX16 Restriction to Specific Warehouse Numbers
Hi Experts, Currently i am facing a weired situation in restricting the transaction LX16 for one of client. Basic scenario is 1) User wants to exeute LX16 for only specified warehouse numbers/ plants...
View ArticleKerberos iOS NW Portal
Has anyone successfully gotten the configuration file to work? I'm following this article Mobile Single Sign On from iOS 7 to SAP NetWeaver but I'm not able to get it to prompt me for a password when...
View ArticleWebdynpro app Authorization problem
Hi Everyone, A user getting the following authorization error message while running the transaction BRFplus ERROR: You do not have start authorization for R3TR WDYA FDT_WD_WORKBENCH, return code 4....
View ArticleTwo factor authentication for SAP GUI
Is there any solution out in market which support two factor authentication for the SAP GUI users? SAP Log on module source is protected which may not be suitable to extend for customization for 2nd...
View ArticleClik here to view.
Removing assignment of Deleted roles
Hi, We are using BW 7.4 version. I have deleted some roles in Dev system and transported the deletion to QA system. In QA system, the roles were assigned to some users. After deletion, the roles are...
View ArticleNew functions in PFCG - track auth.-changes when merging authorizations
I open this thread only to make you aware about SP note 2086293 , which provides additional functionality which was requested from many sides already:- the posssibility to see immediately, what has...
View ArticleCRM 7 ehp 6 security issue for BP in UI
In CRM 7 we are trying to restrict users from seeing BP's they are not authorized. We currently only have three but are going to be bringing in allot more. So far we have Employee BP's, Sold-To's and...
View ArticleBW Table RSECVAL doesn't show data
Hi Experts, We have recently implemented BW. I have created some analysis authorizations in our BW system. But when I check in the table RSECVAL, I only see authorization 0BI_ALL that too with only...
View ArticleHANA Analytical privileges transfer to BO User
Hi,If I have an analytical privilege for a user for him to see only data for Country = US, how do I make sure he has this restriction when the same username views a Webi report built on one of these...
View Article