What are the Rules recommended by SAP for User Ids?
Hello All, Good Evening. What are the parameters that I need to consider for proposing SAP User Ids in Implementation Project? I could see that newly installed SAP system allows spaces also for...
View ArticleMass change in roles validity for locked users
We want to mass change the validity (End Date) of all the roles assignments to locked users account. I've tried to make it work using SU10 but it doesn't seem to work as different users have different...
View ArticleAutomatic creation of SU01 record based on HR data
Is there a way to automate SU01 record creation based on the HR data? When user id (SY-UNAME) is added to infotype 0105, subtype 0001 then if that record does not exist in SU01 it would be created
View ArticleClik here to view.
How encrypt/Sign/add digital sign in SSF(SSF01)?
Hello , I am new to SSF and i have gone through help.sap.com but i didn't get more info.I don't understand the flow of using SSF.In SSF01 ,i have tried selected add signature to example.pdf File in...
View ArticlePortal/ESS Configuration for HTTPS, SANs in SAP Certificates
Hi everybody, I am trying to set up the following portal environment with SSL: 1. SAP web dispatcher connected with two backend systems: portal and erp2. SAP enterprise portal installation...
View ArticleBi authorization error
Hi Experts, I am new to BI security.. I have a requirement where a query is run and it has a drop down which has a list of company codes and after selecting anyone of them the output is displayed. The...
View ArticleClik here to view.
Is there a table that contains the "where used" information from PFCG?
Hello all, In PFCG when you click on the icon "where used" for a specific AUTH. objecl, a pop-up screen appears with the details for that specific object which T-codes are using it with which activity...
View ArticleGateway Security: reginfo, secinfo, gw/acl_mode - how to set?
Hello, our EWA complained Gateway Security Settings.Gateway Access Control List (reg_info/sec_info) contains trivial entriesParameter gw/acl_mode can be set to 1. SAP recommends setting gw/acl_mode to...
View ArticleSM66 Debug authorization for workflow debugging
Hi, I want to debug an workflow method (ABAP OO) via t-code SM66 but every time I click the "Debugging" button and confirm with "Yes", I get an authorization error. The t-code SU53 shows me two failed...
View ArticlethrowUserLoginException / throwNewLoginException
Hi all, We've written a custom login module, with some checks built in to determine if a user is allowed to logon (example if his current domain is included in a list of valid domains that are allowed...
View ArticleFirefighter Users without SAP GRC AC possible?
Hello, Transaction /VIRSA/VFAT does not exist on my client's ERP system.I assumed that this is a standard transaction in ERP. Does this only come if a SAP GRC AC is implemented? The client does not...
View Article/spin/er - This function is not possible
Hi Gurus, User is has access to T-Code /SPIN/ER but when tried to execute user is receiving error "This function is not possible". Please suggest if anything missed. Thanks. Regards,Surya
View ArticleHow to block the multiple logons with NWBC?
Hello, With Sapgui we have the possibility to prevent the multiple dialog logon by profile parameters (login/disable_multi_gui_login). How to prevent the multiple dialog logon using NWBC to the same...
View ArticleBW Infopackage security Display only
Hi there, I am a BW developer and trying to understand the security defined by SAP for BW info package, I am using the Authorization object S_RS_ADMWB for maintaining the security for infopackage,...
View ArticleUser |TMSADM has no RFC authorization for function group SYST
Hi All, When we release any transports we are getting the above error, this is basically due to the fact that implificaiton of complex password parameters, to supress this we had followed the note...
View ArticleSAP AS Java affected from commons-collection vulnerability?
Dear all, we are running an PI AEX (AS Netweaver Java 7.4) and I recently heard about this vulnerability: What Do WebLogic, WebSphere, JBoss, Jenkins, OpenNMS, and Your Application Have in Common? This...
View ArticleNo Authorization to Create TR from CTS
Hi Experts, We are facing an issue in PI system, where user is getting error, "No Authorization to create TR of type Work Bench Request" in PI system. User is logging in to PI system --> Integration...
View ArticleClik here to view.
Why not activate S_RFCACL in SAP_ALL? (no, really!)
This should be a fun Q&A ... but I'm not (only) doing it for the fun ... First, I expect this will offend some sensibilities and stir some emotions (much like when someone says "I use RAID as my...
View ArticleSecurity restriction in transaction /OPT/VIM_WP
Hello, Do you know if it is possible to stablish a security restriction (for example by company code or other) in transaction /OPT/VIM_WP? Currently you can see invoices of other company codes in the...
View Article