Choice of sap NW admin vs security admin

Hi
My company will be implementing sap soon and I have the opportunity to get into either basis or security. I need your advice please.
I have a very good IT experience but not in sap nor any admin exp. I have some user level knowledge in sap. My company will send for the training in the future and is checking my interest.
Thanks

I've solved the issue;
It was caused by me deploying the web-app through the weblogic
administration console.
If it deploys during startup it does work fine.
Hope this might help other people as well.
Thnx,
Aias
"Aias Martakis" <[email protected]> wrote in message
news:4193c4f5$1@mail...
Hi,
I've created mbeans that i want to register on a Mbean Server (with the
registerMBean method) of a managed server.
On a single server this works perfectly but as soon as i switch to a
managed/admin environment i get the error that the current context
principals are not sufficient for doing the registration:
weblogic.management.NoAccessRuntimeException: Access not allowed for
subject: principals=[
], on ResourceType: CmpDomainMBean Action: register, Target: null
at
weblogic.management.internal.Helper$IsAccessAllowedPrivilegeAction.run(Helpe
r.j
ava:2149)
I've got the context through: ctx = new InitialContext();
I definately don't want to hardcode the credentials into the file (i didtry
it and it does work), and I'm really curious as to why this did work on a
single-server and not on a managed-admin server.
I've found that adding theoption: -Dweblogic.disableMBeanAuthorization=true
to the startup indeed does wat it says and it then can register on a
man/admin env. This ofcourse is not a desirable solution either since all
the authorization will be disabled.
So my guess is that the context on the managed server has been altered
compared to when running from a single-server.
Anyone any ideas as to why this changed, or any idea what else could cause
this to happen?
Thanks in advance,
Aias

Similar Messages

  • SAP J2EE Admin Port 50011, 99% it stops

    Hi,
    We have installed EP6 SP2, we tried to apply the patch for that we tried to connect to SAP J2EE Admin through port 50011, it goes till 99% and stays there. We are not able to apply the patch because of this.
    Any thoughts on this or suggestions will help us.
    Thanks
    Senthil

    Login is : "Administrator"
    Password :
    Hostname : Specify the proper host name out here
    Port number :50004 
    Refer Victor's note on how the port is calculated.  This assumes that your portal is installed on 50000, http://hostname:50000/irj should give you the portal home page. Are you able to login here?  On what basis did you choose 50011?
    Again there is no need for a password.  If you are still not able to login, check your installation.

  • B.E. Comp.+SAP Basis Admin Fresher with 6+ IT exp

    I have completed my SAP Basis 4.7 from a premier instt. of Mumbai.
    I am B.E. Comp.SAP Basis Admin Fresher with 6 IT exp.
    Looking a SAP Basis Job in any location
    I would appriciate very much to them who assist me for same..
    Regards
    Nilanchal
    [email protected]

    Hi Nilanchal,
           As per my knowledge there are numerous openings in BASIS area. Post your CV on various job portal and search for job over there. You can also contact different placment consultancy located in Mumbai for you help. Also visit career section of SAP if there is any opening. There are many companies in Mumbai/Pune which are in SAP domain and there must be openings for BASIS guys. I doubt that anyone here can provide you name of the company where openings are.
           The best way is job portal to look for openings.
    All the best.
    Regards,
    Subhasha Ranjan

  • How to get this  com.sap.portal.admin.wizardframework_api.jar file

    Hi this is related to the wizard creating component required .jar file. Can any body tell me , how to get this jar file. I have searched in my IDE plug-in's folder. But i have nt find this.
    com.sap.portal.admin.wizardframework_api.jar
    how to get thid jar file.
    REgards
    Vijay

    Hi,
    You should have com.sap.portal.admin.wizardframework in your SharingReference:
    <property name="SharingReference" value="com.sap.km.application, com.sap.portal.admin.wizardframework"/>
    Pls check this link,
    http://help.sap.com/saphelp_nw2004s/helpdata/en/42/bf4172cb951d66e10000000a1553f6/content.htm
    Hope this helps !
    Regards
    Srinivasan T

  • Warning#1#com.sap.sup.admin.scheduler.JmsScheduler#Plain

    hi
    In our SAP portal server's default traces and application logs we are constantly seeing warning messages as follows
    #1.#00144F54B441000A0000007800002B75000456B6617AB4F7#1221241226310#com.sap.sup.admin.scheduler.JmsScheduler##com.sap.sup.admin.scheduler.JmsScheduler####n/a##6db45ff07fa211ddc2a600144f54b441#SAPEngine_System_Thread[impl:5]_54##0#0#Warning#1#/Applications/AdminConsole/Scheduler#Plain#[3989] The Scheduler is inactive: the Maintenance Mode is enabled!###
    could you guide on how do we get rid of this warning messages as this is filling up the filesystem
    Thank you
    Jonu Joy

    hi
    When i stop this application from NWA    - tcwebadministratorsolmandiag
    which is a part of LM Services Patch 15,  i do not see the warning messages any more in my j2ee application logs and default traces.
    Thank you
    Jonu Joy

  • Sample exam paper for SAP Basis Admin

    is there any website where i can download the sample exam paper of SAP Basis admin?

    Hi,
    There are lots of technical questions for MS SQL Server, you should know the db in order to answer.
    I would suggest you to call SAP and ask them to make the exam for the database you know. Usually is like that, they dont force you to make whatever exam, you have to tell them which platform and database you would like to make the exam for.
    Good luck,

  • How to get the com.sap.portal.admin.wizardframework_api.jar file

    Hi this is related to the wizard creating component required .jar file. Can any body tell me , how to get this jar file. I have searched in my IDE plug-in's folder. But i have nt find this.
    com.sap.portal.admin.wizardframework_api.jar
    how to get thid jar file.
    REgards
    Vijay

    Vijay,
    You can access the above mentioned par file from this location,
    System Admin -> support -> Support Desk->ROOT/WEB-INF/deployment/pcd (download this folder)
    ->com.sap.portal.admin.wizardframework.par.bak->extract the file
    alternatively,
    u can find the same in,
    \j2ee\cluster\server0\apps\sap.com\irj\servlet_jsp\irj\root\WEB-INF\portal\portalapps\com.sap.portal.admin.wizardframework\lib
    Thanks & Regards,
    Ramganesan K
    Keane Inc

  • QM Digital Signature SAP System's Personal Security Environments (PSEs)

    Hi All,
    We want to introduce the Digital Signatures for Quality Management Result Recording and Usage Decision. (Transaction Codes :QE01,QE02,QA11,QA12).
    We have made some studies.Still we need some suggessions to achieve the final goal.
    ==============================================================
    1.
    SSF settings for system signature
    Check and if necessary maintain the standard settings. To do this, execute the following activities in the IMG under SAP Web Application Server -> System Administration -> Digital Signature:
    • Define application-dependent parameters for SSF functions
    • Define security settings for the system
    The above IMG Structure
    SAP Web Application Server -> System Administration -> Digital Signature:
    Is not appearing in ECC6.0. Where we can find the above structure in ECC6.0?
    2. SAP Netweaver
    --> Application Server
    --> System Administration
    -> Maintain the Public Key information for the system
    --> Maintaining the system security information.
    This IMG Actvity "Maintaining the System Security information"
    Environment.
    We have to create new “SAP System's Personal Security Environments (PSEs)” ?
    What is the procedure to create SAP System's Personal Security Environments (PSEs) ?
    We are unable to proceed.
    Plz. help.
    With Best Regards,
    Raghu Sharma.

    Dear All,
    Basis involment is very much required.
    Hence we are closing this issue.
    With Best Regards,
    Raghu Sharma

  • Com.sap.portal.admin.acleditor.par not deployed properly during ep install

    Hi,
    We are installing ep on top of a java add-in.
    The version of ep is sp3. After the installation when i check the pcd folder coom.portal.admin.acleditor.par is not deployed.
    Log has Fatal applciation upload failed. and there is some error which says xml declaration is not allowd here.
    When i try to access the portal page its loading for a long time and giveing page cannot be displayed.
    Portal analyzer gives clean results except for this par file.
    Please help.
    Regards
    Bharathwaj

    Hi Bharathwaj,
    > Do you think the upgradation of the this
    > to SP13 will solve the issue. ??
    No, I wouldn't advise to upgrade a really broken installation. You may give it a try, but the success probability I wouldn't expect as too high...
    > Does a EP upgrade create a clean install again..
    > or just add a few more files ???
    It deploys new portal applications and/or redeploys existing ones which have changes (bug fixed). So theoratically if a PAR is broken, a new one may be fixed; on the other hand, the installation seems to be buggy in it's kernel, in such a case, the root cause seems to be something else than "only" one failed PAR upload.
    > Is there any log file which says what are the steps
    > it had skipped..
    Beneath the default.trc to check for the portal runtime, SAPInst has it's own logs under the temporary inst dir.
    Hope it helps
    Detlev

  • Difference between SAP CRM Security and SAP ECC 6.0 security

    Hi
    I have extensively worked on SAP ECC security but haven't have chance to work on CRM Security.
    Can anyone please let me know the difference between CRM security compared to  ECC security.
    Thanks...

    I am sorry to say, but instead of giving the guy a decent answer you are starting a fight or discussion about stupid forum points...
    really sad.....
    The big  difference between SAP ECC and SAP CRM Security (up to release 5.0) was the following:
    1) For sure there are very different transaction codes in SAP CRM as compared to SAP ECC in the first place
    2)  If you are familiar with R/3 or ECC authorizations; then you know that already on transaction code level, the 'allowed activity' is controlled on tcode level , whereas in SAP CRM , in most cases the 'allowed activity is not controlled by the Transaction code, but on authorization object level....
    E.g. transaction code BP allows you to create/change/display  any type of Business Partner (e.g; sold-to/ship-to/contact person/employee/customer) which is based on the business partner ROLE concept.... anyway...you can control the allowed activity based on different authorization objects.....
    another example is business transaction processing...which can be launched by:
    a very generic transaction code: CRMD_ORDER
    transaction category related transaction codes :e.g.
          > CRMD_BUS2000126 for activity management
          > CRMD_BUS200115 for Sales processes
    Again...allowed activity is not controlled by the tcode, but on authorization object level...
    3) As of the new WEBCLIENT UI (which is valid as of release CRM2006s/CRM2007/CRM7.0) SAP also invented an extra authorization layer, which is UI COMPONENT LEVEL and logical links....  controlled by object UIU_COMP.
    However, they also introduced the BUSINESS ROLE Concept (e.g; SALESPRO/MARKETINGPRO/...) which defines actually the functionalities, navigation bar, screen configuration, logical links you can use/see within the new WEBclient UI.
    Another thing is that instead of using TRANSACTION CODES, as of these new releases, you are actually using 'external services'....so you do not authorize on tcodes basically....but the logic between tcodes and external services in relation to the authorization objects that are checked is more or less the same....
    STANDARD authorization setup in the new WEBUI client is therefore controlled by both backend authorizations (not UIU component related) and the UIU_COMP (restricting access to workcenters/logical links/...)
    4) Additionally SAP also provides a concept called ACE (which stand for ACCES CONTROL ENGINE)....
    This requires a bit of customizing...and the rest is more or less pure customer development, as you will create your own methods where you'll define a logic which dynamically will verify what kind of access you have for an object....
    You should now that ACE is actually implemented on top of your 'normal' sap crm security setup....
    cheers
    Davy Pelssers

  • SAP Design Studio Bookmark security

    We like the new feature in 1.3 which allow us to save bookmark / navigation state in SAP Design Studio application. However it looks like it require Administrator rights for users to be able to save or delete it. We were not able to locate what security required in BI for end users, and we are reluctant to give Administrator right to them.
    Does Design Studio 1.3 come with new security to allow user to add/delete bookmark? Anyone out there able to assist us to pin point which security is required?

    Hi Steven,
    I am not sure it is security
    Please look at the SAP help at https://websmp202.sap-ag.de/~sapidb/011000358700000449022014E/ds13_admin_bip_en.pdf
    Notice this picture/section:
    Could you check on this to see if it helps?

  • SAP GUI 7.20 Security Rules - How to 'Always Allow' Everything?

    The SAP GUI 7.20 comes with a list of security rules.
    What is the best way to allow all access so that user's wont get any security prompts?

    @Sven, section 2.5 refers to 'Central Repository for Security Configuration'. Like Michael, I have a large number of users and we package and distribute software using non-SAP software. We can't have a central repository that all users can connect to so the 'Location' registry entry wouldn't work for us.
    @Michael:
    > Under the SAP GUI Configuration / Security / Security Settings you can change the default of "Customized" to Disabled.
    Do you mean 'Default Action = Allow'? Mine is set to that, but I still get pop-up prompts.
    Would setting 'SecurityLevel = 0' result in the SAP GUI have the required result?
    I realise that this process would need to be followed:
    - Administrator should install a new version of the SAP GUI 7.20 onto a PC
    - Administrator should edit the registry values using the rule editor in the 'Security' node of the SAP GUI options dialogue
    - A saprules.xml file will then be generated
    - The saprules.xml file should then be copied from the %APPDATA%\SAP\Common folder to the location specified in the registry value 'Location' (maybe make Location a folder on the PC? and put the saprules.xml file into there?)
    - The saprules.xml file in the location specified in the registry value 'Location' will not be overwritten by SAP GUI patches or new installations, however it may need to be updated to include new features
    Note:
    - Registry values are stored in different places for 32 bit and 64 bit PC's

  • SAP BI 7.0 Security Blueprint

    Hi,
    I'm new to BI 7.0 (I have experience in v3.0 and 3.5 though)and especially the security side of things.
    I've been asked to create a blueprint document detailing what is needed for a new SAP HR project relating to the security aspects in SAP BI.
    I'm not really sure where to start, what sort of questions I need to ask, who I need to talk to and what should go into the blueprint document.
    Are there any generic roles that could be set up or used?
    Can anyone advise me on any of this plus any additional documents/notes/examples that I may find of use.
    Many thanks in advance,
    mark.

    Hi Mark,
    You need to ask some of the following questions:
    - Is there any specific HR  information that you wish to provide security for?
    For example:  you may want to hide the salary in the BI employee infoobject, or the SSN/SIN, date of birth etc.
    -  Do you want to secure the HR data from all other users, for only some users and what is the split?
    -  Do you want to provide security to specific cubes or if someone has access to the HR InfoArea - they see all cubes?
    From my experience in HR, we usually try to set up a Z infoarea, only accessible by HR people and give access via authorization relevant fields.
    The new security in BI 7.0 has some authorization objects that will do just the thing.
    We also had used an ODS for authorizations - with a check in the report (variable) based on the user name.  This is also possible via an DSO in 7.0.
    Hope this helps....I am not a security expert though!
    Kathleen

  • Does SAP upgrade cover prievious security notes.

    Hi, i am beginner in security field and have this confusion. I am using Solution Manager to find out missing security notes from my system. Should i filter the result and implement security notes that have been released after the date of the upgrade or should I include all security notes including thoses notes relased before the upgrade date.
    Thank You..

    In addition to the list of security notes at https://service.sap.com/securitynotes you should have a look to the Security Patch Process FAQ as well.
    Concerning your question:
    Yes, all security corrections of SAP are part of a Support Package.
    But there exist some pitfalls:
    By the time when you finally have upgraded your production system, it's already some month old compared with the corresponding development close date for the support package at SAP. Therefore you always will find some new security notes -> Use the Maintenace Optimizer to find new security notes while you are preparing the upgrade and the application System Recommendations monthly. 
    Several security notes contain manual instructions to configure the system (e.g. concerning profile parameters, RFC Gateway access control lists or logical filenames), which are valid for the new support package. -> I recommend to skip any date selection while searching for security notes. (Use a date interval only if you explicitely want to have a look, e.g. to the notes of the most recent patch day.)
    Kind regards
    Frank

  • SAP Cloud - Help Desk Security Roles

    Hi SAP user community,
    Can you please recomend which security profile we should use for our Help Desk support?
    Help Desk support would only require access to Application and User Managment --> Busienss Users. Their task would need to be limited to Password Resests and User Locks.
    Thank you,
    Zhenya

    Hi Zhenya,
    I wouldn't use the pre-delivered roles for your use case.
    You can create your own roles via "Application And User Management -> Business Roles" and assign them to your users.
    It would probably be sufficient to create a business role that grants access only for the view "Application And User Management -> Business Users".
    Best Regards,
    Andreas

Maybe you are looking for

  • How to get rid of the attention to choose between my wifi network or the apple tv? That appears in the screen saver

    When the screen saver is on appears an message where ask me to choose between my wi fi network or my Apple Tv in order to get the signal from my PC. There is something I must do to set up the Airplay, if so, what I have to do and where?

  • Present lists in one page

    Hi I have a customer that handles service on machines. They have 3 lists per customer and have over 120 customers. I would like to present thoose on one page, I tried content search but I didn´t get it to work. It presented everyting in ther lists. (

  • SD Billing Document via Email

    Dear Expers, I have a requirement to send the invoices for allied and non-allied customers via email whenever it is created or changed always.  there are various output types for which i need to enhance the email functionality. For my understanding c

  • Simplifiying a directory tree

    hello... how can i simplify these codes below to a simpler version with minimum features possible? is it possible to eliminate the title bar? import java.awt.*; import java.awt.event.*; import java.io.*; import java.util.*; import javax.swing.*; impo

  • Apache FOP: reducing/reclaiming memory?

    FOP does a marvelous job in generating documents, indeed. However, the memory footprint is also extraordinary (especially for larger documents). What's the most secure way to clean up fop and reclaim all memory fop used (if possible)?