Search found 400 matches

by Gary Morris
Mon Dec 17, 2018 5:46 pm
Forum: SAP Security
Topic: Sap GRC access request Admin
Replies: 1
Views: 1422

Re: Sap GRC access request Admin

I am sure it was resolved but just wanted to post a solution to try and get some activity moving on this great board. It's been a while since I visited.

https://archive.sap.com/discussions/thread/3209579
by Gary Morris
Tue Feb 17, 2015 10:50 am
Forum: SAP Security
Topic: LICENSE_ATTRIBUTES and assigning license to roles
Replies: 3
Views: 3844

LICENSE_ATTRIBUTES and assigning license to roles

Does anyone have experience with LICENSE_ATTRIBUTE transaction for assigning USMM licensing to Roles instead of users? What are the benefits of using this method? What are the problems with this method? Are there "gotchas" I need to be aware of? Does anyone have links to good docuemtation or white p...
by Gary Morris
Fri Oct 31, 2014 2:47 pm
Forum: SAP Security
Topic: Basis vs Security Administration
Replies: 1
Views: 2751

Re: Basis vs Security Administration

Normally SAP Security will need many "Basis" transactions to perform system audits. Review the transaction men of the SAP delivered roles: SAP_AUDITOR_SA SAP_AUDITOR_SA_CCM_USR SAP_AUDITOR_SA_CUS_TOL However Security should have display for these transactions. The Basis team should have most of the ...
by Gary Morris
Fri Oct 31, 2014 2:33 pm
Forum: SAP Security
Topic: SECATT and Role Name in Quotes
Replies: 5
Views: 6205

Re: SECATT and Role Name in Quotes

I gave up and kept the quotes. Life is too short and if they wanted the commas that bad what difference does it make if the long text names have quotes? It does not do it if there are no commas in the name however.
by Gary Morris
Wed Aug 13, 2014 1:25 pm
Forum: SAP Security
Topic: SECATT and Role Name in Quotes
Replies: 5
Views: 6205

Re: SECATT and Role Name in Quotes

The client wants to keep the commas in the long text of the role names. Does anyone know how to keep the SECATT script from adding double quotes to the long role name if there is a comma in the name? I asked if I could replace it with a hyphen instead which does not add the quotes but they want me t...
by Gary Morris
Wed Aug 13, 2014 10:21 am
Forum: SAP Security
Topic: SECATT and Role Name in Quotes
Replies: 5
Views: 6205

Re: SECATT and Role Name in Quotes

Figured it out.

Special character comma (,) used in the long text of the role name causes the long role name to be in double quotes after running the script. Other special characters we us such as / or - do not cause this.
by Gary Morris
Wed Aug 13, 2014 9:12 am
Forum: SAP Security
Topic: SECATT and Role Name in Quotes
Replies: 5
Views: 6205

SECATT and Role Name in Quotes

Hello friends,

I am using EHP7 for SAP ERP 6.0 and an SECATT to create new roles by copying old roles. The script works but the long text role name is in double quotes such as
Z_ROLE_EXAMPLE
"Test Role for SECATT Script"

How do I get rid of these quotation marks?
by Gary Morris
Thu Jun 26, 2014 2:49 pm
Forum: Basis
Topic: I have a serious Transport problem. Please Help Me!
Replies: 1
Views: 1708

I have a serious Transport problem. Please Help Me!

I am trying to transport changes to the program RSUSR008_009_NEW. I can change a critical auth, it is the only thing that transports, or I can select all and use the transport option from the menu and it looks like all the US* tables are in the transport.... BUT.... I have no functional (critical au...
by Gary Morris
Thu Jun 26, 2014 2:42 pm
Forum: Basis
Topic: How to transport RSUSR008_009_NEW
Replies: 3
Views: 5397

Re: How to transport RSUSR008_009_NEW

I spoke too soon.. Still have transport problems... HELP!!! Maybe I should post this in BASIS. It is a Transport question not security.
by Gary Morris
Wed Jun 25, 2014 10:54 am
Forum: Basis
Topic: How to transport RSUSR008_009_NEW
Replies: 3
Views: 5397

Re: How to transport RSUSR008_009_NEW

I figured it out. You have to select all entries in the table before you use the transport option from the menu. You have to do it from both the critical authorizations list and the variants list to get everything in the transport. If you change one critical authorizations, the prompt says you can't...
by Gary Morris
Wed Jun 25, 2014 9:30 am
Forum: Basis
Topic: How to transport RSUSR008_009_NEW
Replies: 3
Views: 5397

How to transport RSUSR008_009_NEW

I need help transporting RSUSR008_009_NEW. I cannot figure out how to get all the variants I created to transport. I can get it to prompt for a transport and yet not all of the tables are transporting and not all of my changes. When I use the transport option from the menu it is always empty. When I...
by Gary Morris
Fri Apr 11, 2014 4:37 pm
Forum: SAP Security
Topic: GRC V10 Connectors to non sap systems
Replies: 3
Views: 4561

Re: GRC V10 Connectors to non sap systems

Yes. Create transactions and the required authorization object to successfully complete a function and give it an Authorization ID in RSUSR009_NEW. Create Variants to combine these funtional authorization IDs into SOD combinations and then audit for them. Schedule it to run at night in background an...
by Gary Morris
Fri Apr 11, 2014 10:02 am
Forum: SAP Security
Topic: Truth about Table Maintenance / DEBUG
Replies: 3
Views: 4550

Re: Truth about Table Maintenance / DEBUG

If table maintenance is needed restrict with a parameterized transaction that access only that table. Restrict by table groups. You can also restrict by S_TABU_NAM and grant access only to one table. You did not say whether people are using SM30 / SM31, SE11, etc. So I am not sure if you are saying ...
by Gary Morris
Fri Feb 01, 2013 4:54 pm
Forum: Basis
Topic: Disadvantages of SM19 and SM20
Replies: 3
Views: 3342

Re: Disadvantages of SM19 and SM20

Advantage of SM19 = besides logging security critical events if they occur, the text log files that are created for each day allows for other tools such as CCMS log agents to read character strings and alert if found. This allows for customization of your email alerts instead of only what is availab...