Search found 36 matches

by MikeNZ
Wed Jan 09, 2008 5:25 am
Forum: SAP Security
Topic: Firefighter - Message to Firefighter / Multiple Logon [R]
Replies: 3
Views: 2055

Hi

SAP note 947726 - fixed the issue
by MikeNZ
Mon Dec 17, 2007 7:38 am
Forum: SAP Security
Topic: Firefighter - Message to Firefighter / Multiple Logon [R]
Replies: 3
Views: 2055

Firefighter - Message to Firefighter / Multiple Logon [R]

Hello We are in the process of setting up SAP GRC - FIREFIGHTER and have encountered the following issues... 1) Multiple users can logon using the same Firefighter ID at the same time? Is this correct - my understanding was that only one firefighter could use the Firefighter ID at once? 2) When a Fi...
by MikeNZ
Fri Dec 14, 2007 6:21 am
Forum: SAP Security
Topic: Number of Txns per Role
Replies: 4
Views: 1496

Thanks,... I agree with you on all fronts. I can't see the point in having a massive number of single roles - if users are just going to have them assigned back together anyway. Just increases maintenance and add another layer of complexity to some thing that should be simple..... At the end of the ...
by MikeNZ
Thu Dec 13, 2007 5:38 am
Forum: SAP Security
Topic: Number of Txns per Role
Replies: 4
Views: 1496

Number of Txns per Role

Hello We just had a review performed of our Global Role Template. One of the comments that came back was "As a rule no individual role should contain more than ten transactions when building for a global template" Basically - they are asking us to review our role design and change any roles with mor...
by MikeNZ
Wed Sep 26, 2007 8:07 am
Forum: SAP Security
Topic: CJ01 - Restrict Access to Project Profile
Replies: 4
Views: 2035

Hello Yes - I reviewed SU24 as my 1st point in the problem solving. Am familar with how it works. There were no objects values / that meet the requirement (hence my post). Sandi - yes have been working with the business on this one and we are trying to restrict the two type of business users who are...
by MikeNZ
Mon Sep 24, 2007 8:53 am
Forum: SAP Security
Topic: CJ01 - Restrict Access to Project Profile
Replies: 4
Views: 2035

CJ01 - Restrict Access to Project Profile

Hello

The project I am working on has a requirement to restricted CJ01, CJ03 - by 'project profile'.

I can't see any authorisation object that looks like it does this as standard.

Does anyone have any experience or ideas about how to restricted by project profile?

Thanks
by MikeNZ
Mon Apr 02, 2007 8:23 am
Forum: SAP Security
Topic: Password History Function
Replies: 4
Views: 1930

Also can be dictated by Profile Parameter
login/password_history_size
by MikeNZ
Mon Mar 26, 2007 7:06 am
Forum: SAP Security
Topic: Issue with Uploading Roles
Replies: 4
Views: 2182

Thanks Berryd -

Have found that it doesn't matter what you download format you download the roles as - as long as you chnage the upload parameter to Default - UTF8 for unicode systems)
by MikeNZ
Fri Mar 23, 2007 8:24 am
Forum: SAP Security
Topic: CUA - Users not created in Central System
Replies: 3
Views: 1540

Thanks for your reply - sorry I didn't understand your comment "You can do mass changes in SUA on this user since you can always distribute the assignments to CLNT200"

Could you please explain a little more to me what you mean?

Currently I can't use SU10 in CUA - as the users don't appear
by MikeNZ
Fri Mar 23, 2007 8:15 am
Forum: SAP Security
Topic: SU10 not working as expected in CUA
Replies: 1
Views: 1399

SU10 not working as expected in CUA

Hello - I made an earlier post but may have incorrectly diagnosed the issue. I have just set-up a new CUA - using Solution Manager 4.0. The users appear correctly in SU01 - but when I try to use SU10, it does not show ALL the users. Note: I have determined that the only users that exist in the SU10 ...
by MikeNZ
Fri Mar 23, 2007 6:13 am
Forum: SAP Security
Topic: CUA - Users not created in Central System
Replies: 3
Views: 1540

CUA - Users not created in Central System

Hi - Just put in CUA into a Solution Manager 4.0 client - and have the following issue. After performing SCUG - the users are brought into the central system BUT not created into the central system. For example: Child system in CLNT100 Parent system is CLNT200 In CUA - if I search on the user - I ca...
by MikeNZ
Thu Mar 08, 2007 12:59 pm
Forum: SAP Security
Topic: Issue with Uploading Roles
Replies: 4
Views: 2182

Issue with Uploading Roles

Hello In the DEV environment I am trying to upload some roles - using the standard Role > Upload file path. And am getting the error message "The file does not contain any valid data" I am using a 7.10 Gui and the system is being hosted by SAP. I can't upload ANY single or mass downloaded roles. I h...
by MikeNZ
Wed Mar 07, 2007 1:47 pm
Forum: Basis
Topic: Creating new clients - Steps to take
Replies: 2
Views: 643

Creating new clients - Steps to take

Hello We are right at the begnning of a new SAP project and I have been asked to create some addtional clients. I don't really know much about BASIS and am only filling in until we get some BASIS resource. Can someone please help me with the some basics - I want to create a new client and copy it fr...
by MikeNZ
Fri Feb 16, 2007 7:19 am
Forum: SAP Security
Topic: HR authorizations with logical databases
Replies: 2
Views: 1032

Hi If User A runs the report, he can see all the information, except data from infotype 008. Is this scenario even possible? Yes should be possible depending on the type of report - and whether IT 0008 is a require output. P_PERNR is used for giving access to an employee's personal information. http...
by MikeNZ
Fri Feb 16, 2007 7:05 am
Forum: SAP Security
Topic: HR Structural Authorizations
Replies: 1
Views: 1317

Madhu You should be able to discuss with someone with HR experience on your site as to what is needed by the payroll team. - This is likely to be a mixture of Txn codes and Infotypes. - you should build access through roles (PFCG) rather than profiles - key objects to consider will be P_ORGIN, P_PCR...