SE51 Screen Painter
Integration of SAP Notes
The default permissions to open and use a launchpad are the SAP_UI2_USER_700. The role for the administration is SAP_UI2_ADMIN_700. In the administration interface, the launchpad can be customised, so this permission should only be released to a few users for administration.
At best, for the time in which an emergency user is in service, a separate log of the activities undertaken is written, which can then be evaluated. In the following chapter I would like to explain our best practice approach to implementing an emergency user concept. Our approach to using an emergency user concept We have had good experience with the use of the Xiting Authorizations Management Suite (XAMS) in this area. This suite consists of various modules for creating role concepts, managing permissions including a permission concept, and also enables the implementation of an emergency user concept. XAMS works here with a limited time assignment of reference users with extended privileges to enable the emergency user concept. A self-service application may be made with a justification and a period for allocating special rights. The application window is illustrated in an example in the following screenshot: Evaluation of the use of the Emergency User Concept Once this request has been initiated, a new mode will be opened for the user, in which he can work with the extended rights. In addition, depending on the configuration, a stored workflow can be initiated as an approval process, or pre-defined controllers will be notified by email to verify activities. Once the session has ended with the emergency user, the responsible persons will receive another email with the logged activity of the user with the extended permissions. One of these logs is shown in the next screenshot: These logs can also be viewed in the system. Here you will get an overview of all the sessions that have been run. In addition, it is possible to approve activities with special rights after an evaluation. This allows the controller to get an overview of the activities undertaken with the emergency user. If you are using this Emergency User Concept and following these steps, you can ensure: Each user on the production system retains his or her original necessary rights.
SE24 Class Builder
Virtual CodeProfiler allows you to automatically identify risks in ABAP code and correct errors. CodeProfiler for ABAP is fully integrated with SAP and is based on Virtual Forge's patented global data and control flow analysis. This solution helps ensure that applications written in ABAP have no security, compliance or quality gaps. As a result, SAP systems are protected from unauthorized access and meet the requirements of internal and external auditors. At the same time, CodeProfiler improves the performance of SAP systems and reduces costs.
The establishment of Software-Defined Data Centres or IaaS are the key to further flexibility and standardisation of SAP technology infrastructure. The concept of a Software-Defined Data Centre is to create an abstraction layer over the individual virtualised components, such as servers, networks or storage, that controls, controls, provisioning, and automates the entire infrastructure.
For administrators, a useful product - "Shortcut for SAP Systems" - is available in the SAP basis area.
There you can see that the data from the master role was automatically copied.
So much information... how can you keep it so that you can find it again when you need it? Scribble Papers is a "note box" that makes this very easy.
Find out what this is and how you can use it to better protect your SAP system.