Role recognition in CUA after creation in DEV & QA
Dear Experts, I am currently using CUA to assign roles to users in all DEV, QA & PRD environments.When I create a new role in DEV then send it to QA, I usually assign it to a user so then can test...
View ArticleDelete an already released transport request
Hello together, I have a problem in SE09/SE10 with a transport request. The request is as follows: Modifiable D01K939667 100 Username /Description D01K939668 Username...
View ArticleReport RSUSR100N output
Dear colleagues, When I select both Roles and Profiles, I know that change documents for Roles can be found in CDHDR table where Change Document Object is PFCG. But for Profile changes there is nothing...
View ArticleWrong or Missing PIN for PSE
Hello I just created a PSE and tried connecting to a web service with it. I have created RFC in SM59 that points to the web service and under security tab I used this PSE that I just created. Somehow...
View ArticleAttaching New Authorization Object to Many Transactions
Hello Experts, I have a new Authority Object created. Now i would like to add this authority object to some set of transactions.Is there a automatic way, using which the authority object can be...
View ArticleThe auth values are there in the role but it is not showing in SE16 and SUIM
Hi All We are facing an abnormal issue. We are making some changes in the parent role and generate the profile through the parent role, so that all the changes have been impacted the child roles. It...
View ArticleAuthorization Evidence.
Hi Our aim to show the evidence that no user is having authorization to deactivate the inspection type. This activity can be possible by using 2 transaction codes, one is QA08 and other one is through...
View ArticleClik here to view.
Access to ABAPER On Production
Dear All Experts,Here, ABAPERs want to access of Debugger, SE16, SE37, SE38, SE80 on Production Server while due to security reasons I have denied number of time but every time when they went in...
View ArticleCL_HTTP_CLIENT trying to use SSLv3, even though it's turned off?
I'm trying to eliminate the use of SSL 3.0 following the POODLE vulnerability disclosure. However, something is broken and I'm not sure how to un-break it. It might be a fundamental flaw. I'm trying to...
View ArticleS_RFC can´t be adjusted in PFCG
Hi experts, I have a question regarding the authorization object S_RFC. I have a role which should extend this authorization object. The object can´t be maintained via the role in the Permissions tab...
View ArticleS_OC_ROLE authorization object with Administrator
Hi, May i know what are the possible options we will get with S_OC_ROLE with Administrator value. When i launch SOST transaction to see Out bound emails, it checking these values. if we don't have...
View ArticleClik here to view.
after run PFCG_ORGFIELD_CREATE, still can not modify the new org. level
Dear All, I want to add the field "PERSA" (personal area in HCM) as a new organizational level for authorization design.I have run the report PFCG_ORGFIELD_CREATE to add this field. And no error...
View Article2 word value (XY) for Characteristic in BW analysis authorization
Hi, I have a characteristic (Division) in BW. There are multiple divisions in our system including one with 2 words ( X Y). Now that I am creating analysis authorization to provide access to this...
View ArticleRemove a transaction from the S_TCODE object
Hi, Where I work now there is a role from long time ago. I that role there are a few transaction codes in the S_TCODE object, which are not in the menu. I donu2019t know how they got there. The T_CODE...
View ArticleSAML 2.0 Support Features for NW 7.3x
Hi, Does NW 7.3x supports SAML 2.0 with HTTP Redirect binding in the authentication request and HTTP POST binding in the authentication response?
View ArticleHow to disable from providing email in address tab --> Tx->SU01
Hi Experts, We have a requirement where in Tx--> SU01 in Address Tab we have to Disable Email from providing as it is showing Mandatory to provide Email address. Any suggestions on how to restirct...
View ArticleMitigating POODLE - Disable SSLv3/use only TLS
All, It seems there are presently a few discussions on how to mitigate POODLE, but they are fragmented and incomplete. For the sake of this discussion, I'd like to disable all SSLv3 on AS ABAP and AS...
View ArticleRecommended Settings for the Security Audit Log (SM19 / SM20)
Hi Security-Folks, I like to discuss with you the recommended settings for the Security Audit Log (SM19 / SM20). Here's my proposal: Profile Parameters: rsau/enable = 1rsau/selection_slots =...
View ArticleSAP Audit for Client Dependent Config Tables and more
So we recently got audit concern about users being able to access certain functions. However I seem to be at a loss in trying to figure out how I would find out where these are setup to give access to...
View ArticleHow to audit customer display transactions?
Dear colleagues, Do you know a mechanism to keep trace of all the customer display transactions in detail? I mean, is it possible every time a user execute a transaction where customer information is...
View Article