I am glad to inform you about a significant development in the RedRays Security Platform for the ABAP stack. We have created a new module that effectively deals with the pressing concern of password security in today’s digital world. The Challenge In today’s increasingly digital world, the importance of password security in business operations cannot be underrated.....
A Role redesign, also sometimes referred to as security redesign or role remediation, refers to significant changes to SAP roles that impact the authorizations of SAP users.It is basically based on the principle of separation of duties (SoD). Due to different SoD requirements between companies, the final SoD review takes place in the customer concept,....
How you can leverage new functionality to improve your security role build in SAP S/4HANA. Avoid CHANGED. MANUAL by Exception. MAINTAINED is OK. Strive for STANDARD. For as long as I’ve been building application security roles via transaction PFCG, this is the mantra I’ve followed when maintaining authorisations. Transaction PFCG (Role Maintenance)....
Dada a criticidade das informações que mantém, a camada de autorizações relacionada aos componentes FI/CO, estes que, transacionam informações estratégicas e sensíveis, é amplamente discutida. O estabelecimento de controles, tal qual, SOD, visa assegurar a lisura nos processos e a integridade das informações demonstradas. O ponto de partida para esta publicação foi a seguinte impressão: “A....
This tool supports exploration and management of authorization groups. Features List Authorization Groups (Quick Jump to SE54 identical feature) List Authorization Groups used in Table/View maintenance dialogs (Custom Feature) List Authorizations Profiles / PFCG Roles where a given Authorization Group is embedded (Custom Feature) Maintain Authorization Groups (Quick Jump to SE54 identical feature) Assign Authorization....
In this blog post I will describe the start authorization for Web Dynpro for ABAP applications and, most importantly, how it is controlled. Similar to the authorization object S_TCODE, which is being checked during the call of a transaction, during the call of Web Dynpro ABAP applications the authorization object S_START is being checked. This....
One of the first challenges the security administration team faces when embarking on their SAP S/4HANA implementation is how to provide the project team members with access to SAP Fiori Launchpad. A “chicken and egg” situation arises when project members do not know what SAP Fiori access they will require until they have validated the SAP Fiori apps and assessed the fit to standard. And to do....