Dangerous APO and BI Transaction codes
Hi experts,
I have question Dangerous APO and Transaction codes
Background :
We are in the process of implementing SOX controls for the new APO and BI Systems
Questions :
What are the Dangerous APO Transaction codes which should not be assigned to any one in Production system
What are the Dangerous BI Transaction codes which should not be assigned to any one in Production system
Additional Notes
System which we are having
APO
Version : SCM 5.0
BI
Version : BI 7.0
Praveen,
I am a puzzled that you would ask such a question.
Authorizations ALWAYS derive from requirements. In this case, Sarbanes-Oxley speaks of control mechanisms. Your SOX auditors should tell you what they consider to be critical, and they should advise the client company as to which transactions should be controlled, and how best to control them.
There is no transaction that should be disallowed to everyone. That would eventually make the system unusable. The question is, "how many people should have these critical transactions, and how should the execution of these transactions be monitored and controlled".
Generally, the APO portion of SCM should require less SOX controls than ERP, since APO is mostly a planning system, and not an execution system (there are some exceptions here though). Likewise, the BI portion of SCM usually contains no financial reports, and therefore should have relaxed controls over, say, the main BI instance used by your company.
Don't make the mistake of strangling yourself to satisfy your perception of what you think an auditor may require. Make them tell you the minimum requirements for compliance. Anything beyond minimum compliance with SOX is costly. This question is then a matter of your company's policies. I usually vote for 'no additional restrictions' (but my poor vote doesn't usually count for much).
Rgds,
DB49
Similar Messages
-
User Exit for VA01 and VA02 transaction codes
Hi,
I am writing a userexit for PO number checking for VA01 and VA02 transaction codes.The PO number should be unique in the table (vbkd-bstkd).Duplicate PO number entries can be checked with Sold-to Party.If anybody written something like this....please advice me...
Thanks in advance.
fractalHi Fractel,
Why are you looking for a user exit to do this duplicate PO check?
This can be achieved through configuration of your sales order document type and message control. Follow the path below for configuration of the document type.
Implementation Guide for R/3 Customizing (IMG)
-->Sales and Distribution
-->Sales
-->Sales Documents
-->Sales Document Header
-->Define Sales Document Types
Once you execute this node, you will see all the available document types. Select the one you are interested in and click the details icon. In the subsequent screen, under "General Control" section, there is a field "Check purch.order no". Pick the value 'A' from the drop-down list.
Once you do this, system will check for duplicate PO numbers whenever you are creating or changing the sales order with that document type. If duplicate, it issues a message. -
Transaction and SPRO transaction codes in SNC
Hi,
Can anybody provide the transaction codes used in SNC and also SPRO transaction codes.
ThanksDear Vaibhav,
Some transactions:
/SAPAPO/MAT1, /SAPAPO/PRT_LOCPROD, /SAPAPO/LOC3, /SAPAPO/TL1, /SAPAPO/MTI2, /SAPAPO/RELHSHOW, /SAPAPO/RELHDELETE, /SCA/KANBANMDV, /SCA/SUPAREAV, /SCA/UPDRESPTIME, /SCA/SCHEDCFG, /SCA/SNIALERTSWRITE, /SCMB/48000030, /SCMB/15000010, /SCA/BIF_EVSTA_C, /SCA/52000046, /SCA/52000012, /SCA/SNIALERTSWRITE, /SCMB/ALEN_ALERT_DEL, /SCA/94000326, /SAPAPO/REPLCTRL, /SCA/FCSTMR, /SAPAPO/PROM_EVENT, /SAPAPO/SCMB_MP32, /SAPAPO/MP_CBPF, /SAPAPO/PROM_PATT, /SAPAPO/PROM_OFFSET, /SAPAPO/PROM_PROF, /SAPAPO/PROMMR, /SCA/94000263, /SCA/DELCLOSEDKNBN, /SCA/09000444, /SCA/60000197, /SCA/60000198, /SCA/FCST_OUT, /SCA/DMD_INF_OUT,
You can see the transaction codes by clicking on the icon at bottom right corner of the SAP screen. You can note down and maintain a list of codes you use.
Search the forum or internet for general transaction codes for SNC APO.
Regards
Naveen -
How to post stock and what transaction codes
Hi gurus
If I created new material how can I post stock in to the material to process.
Ex:MMBE for stock checking.
But what is the t -code to enter some stock at materila.
also how what other transaction I can for stock posting at various scenarios.(I mean what other transaction codes for different things)
Thanks
KrisHi
Enter T.Code: MIGO
Select : Other
Movement Type : 561
In the item Details Entyer the material . enter the quantity. Plant and Storage Location.
Save it. CHekc the Stock In MMBE for that material.
Thanks & Regards
Ram -
Ho to automate data extraction from KSB1 and GR55 transaction code
Hi All,
Can you please let me know if their is a way to automate data extraction from transaction code KSB1 and GR55. I have to extract data from 5 different servers .i.e different server for each region and again i have different controlling area codes in each region. Following are the details which i use to extract the data. It takes too long for me to extract data from all this regions and controlling area codes using my parameters. It's very time consuming so i want to automate this process. I am end user so i don't have any admin rights. Please let me know any workable solution asap.
Production areas : PNA for Americas, PSI for Asia Pacific and Japan, PGY for Germany, PIT for Italy and PEU for Europe
Controlling area codes in PNA : CAR for Argentina, CBR for Brazil, CMX for Mexico and CUS for USA. Same way there so may other controlling area codes for all other production areas
Period From 1 to 12
Fiscal Year : 2009
Cost Centre Group : G_6284
Cost Element Group : 1742000000
Please let me know in case you need more details.Hi,
Here follows a translation from German:
SAP GUI (client) for Windows enable
Start SAP Logon and log on to the SAP server.
Click the button on the toolbar to adjust for Local Layout.
Click Options and then click the tab for the scripting.
Select the Enable checkbox for scripting.
Disable the checkbox for Notify when a script is assigned to an active GUI and the checkbox for Notify when a script opens a connection.
Save the settings and restart the SAP GUI again.
SAP-server enable
With the following procedure, you can enable scripting by the SAP client temporarily. The specified value in this way is lost when you restart the server.
Start SAP Logon and log on to the SAP server.
Start a transaction RZ11.
Enter sapgui / user_scripting in the window to manage the profile parameters.
Click on ads.
Click in the window to display the profile parameter attributes to change value.
Enter TRUE in the field for a new value.
Save the settings and log out from the SAP GUI.
Quit the SAP Logon.
Note:
If the server administrator edited the application server profile of the SAP system to sapgui / user_scripting = TRUE to include the scripting is enabled when you restart the server by default.
SAP provides an option to change the network connection mode at any server. The following two connection modes are available: high-speed connection (LAN) and connecting with a slow speed. Although Functional Tester works in both modes, the high-speed connection with a recorded script is played only in this mode. This also applies to other modes. They must reflect your SAP script in the same network connection mode, with which the script was recorded. It is recommended that the mode of "high-speed connection, as it offers a greater number of valid recognition properties.
Regards,
ScriptMan
Edited by: ScriptMan on Apr 13, 2010 12:32 PM -
Difference between ob08 and oc41 Transaction code in Exchange rate
Hi,
Can any one help me out what is the difference between OB08 and Oc41 in transaction code in Exchange rates...
Thanks in Advance
Sivanandhi Siva,
When foreign currencies are valuated, all the open items that were posted in a foreign currency are valuated. The valuation is based on the individual open items in a foreign currency, that is, each open item in a foreign currency is valuated individually.
The exchange rate table is OB08
AND
OC41 is another transaction to the exchange rate table.
When you try to change you cannt change the rates sometimes.... but u can see the rates displayed.......
Regards
Ranjit Kumar -
How to get a list of current users and their transactions code?
SM04 and AL08 give the list, but its not comprehensive. in sm04, we have to click the username and select sessions and then a
new popup comes giving all transactions for the user.
I want a list such that each and every transaction corresponding to the user is listed at same time.Hi,
Use the FM TH_LONG_USR_INFO.
Just give parameter user as * (it means all users, other wise current user)
It will give ALL transactions for ALL users.
Regards,
Amit Mittal.
Edited by: Amit Mittal on Dec 30, 2009 1:00 PM
Edited by: Amit Mittal on Dec 30, 2009 1:03 PM -
How to Execute FEBP and FEBA transaction codes
Hi All,
Can you please explain me how to configure customizing for FINISTA in EBS.
And also can you plz explain how to execute the t codes FBEP and FBEA.
regards
MadhaviHi
Enter T.Code: MIGO
Select : Other
Movement Type : 561
In the item Details Entyer the material . enter the quantity. Plant and Storage Location.
Save it. CHekc the Stock In MMBE for that material.
Thanks & Regards
Ram -
How to create Transaction code for ABAP and execution by other user
Hi All,
Could someone please let me know how to create transaction code in detail for ABAP program. Step by step procedure expected. I would like to know how other user can execute the report using same transaction code which I have created.
More about authorization.
Thanks in advance.Hello,
You can create transaction code from se80 as well.In object navigator,right click on your program name and create->transaction code.You can create transaction and select if it is only a report,a report with selection-screen depending on your requirement.You can run your report directly by entering the transaction code in the command field.
You can authorise the users who can use your transaction:
<b>Authorisation objects</b> are used to restrict certain transactions to users.Critical data must be protected from unauthorised users.For example,the head has access to certain data.But it cannot be accessed by his subordinate.For this we need to define <b>roles</b>.
Create an authorization object with transaction SU21.
An object usually consists of the ACTVT (activity) field and one other field,which specifies the data type to be protected.By ACTVT, we can decide if the data is accessible for change,display only etc.
Add authorization fields to the authorization object created.
Assign the authorization object to the transaction using SE93.
Attach the authorization object to the role using transaction PFCG.
If you want <b>to assign roles</b>,use transaction PFCG.Create a new role.In the AUTHORIZATIONS tab,you can get a self generated profile name and a profile text by clicking on the icon next to it.Then go to the "Change Authorization data" and choose an authorization template.Then you can choose to display/change/create an activity and after the selection,click on the red and white circle.The profile will now be created.
In the user tab,you can give the user details who can use this role.
<b>Also check this link:</b>
http://www.*********************/r3_security/r3_security_tips.htm
http://help.sap.com/saphelp_nw04s/helpdata/en/52/6716a6439b11d1896f0000e8322d00/content.htm
<b>Very helpful guide:</b>
https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c
Regards,
Beejal
**Reward if answer is helpful -
Transaction code for daily attendan
Hello,
Can you please let me know wat is the Transaction Code to send the daily Attendance sheet of the employees.
Please let me know the steps and the Transaction code.Hi,
You can use the transactions PA30, PA61,PA62 and for reporting PT64 and PT65.
Regards,
Kapil Kaushal -
How to find the transaction code for the particular program or include
Dear All,
Please help me on this queary.
1) How to find what is the transaction assigned for the particular Report
2) How to find the particular include is used in which programs and also transaction codes
I have one ZProgram that contains only includes no selection screen, I have to find where this program is used, in that one include is ther I would like to know in which program and in which transaction that is used,
They have given ME9F, ME21N/22n, wheren this includle is calling.
Please kinely help on this.
Thanks and Regards,
MuralikrishnaHI
1. you can find the transaction for your report by opening in se80. On the left side window it will show the transaction if there is any.
2. to find in which programs particular inclue is called , just open include in se38 and press where used list icon. in the pop up window select programs.
regards
vijay
reward points if helpful -
Agewise Reports for Vendors - Transaction Code?
Agewise reports for Vendors are needed.
What would be the best way and the Transaction code?Hi Bhatia,
Transaction code F.42 via Information systems > Accounting > Financial accounting > Vendor accounts > Account balances ; you may find the balances and movements for different periods by varying the reporting periods and years.
Hope this helps.
Please assign points as way to say thanks -
Transaction Codes for Report Painter Reports
Hi,
Can any bodu assist on how can we create a link for the report painter report and the transaction code for the same.
Also is there somthing to be taken care while getting the same transported to another client.
Thanks & Regards,
Ankur GoelHi,
Thanks for response.
Actually I created the Transaction code and get the Report and Transaction code transported but when i executed the transaction code in the Receiver Client i gave run time ABAP error.
let me give example:
a) I created the Library, Report Group & Report in my Developement Client.
b) Using SE93 i assigned the program name of the Report to transaction code.
c) Got the Library, Report Group, Report & T.code transported to Quality Client.
d) Executed the transaction code in QAS which gave me error.
Reason identified:
a) Let say Program name created for the report is AAXGHGYGBL010 in my client 010.
b) Transaction code ZREPORT01 created using SE93 for program AAXGHGYGBL010.
c) Now got the Library, Report Group, Report & T.code transported to Quality Client 050.
d) In client 050 program AAXGHGYGBL010 doesnot exist as AAXGHGYGBL050 has been created for the transported Report.
Thanks & Regards,
Ankur Goel -
Short cut assign all transactions code to a user, restrict only few tr code
Hi,
I know how to assign transaction code to user, and restrict transaction codes to the user through pfcg assigning role.
If I want to assign all transaction codes to a user except say su01, and pfcg, then I have to write all the transaction codes to a profile assigned to the user except pfcg and su01, which is a tedious job. Thus is there any way like in sap_all if I can exclude only those transaction codes which I want to exclude to a user.
No one would like to write down 1000 tr code assigned to a user. Is there a short and better way?
Thanks
syedCreate a new role using PFCG go to the authorization tab and use the sap_all template and remove the authorizations for the transaction you don't want to assign.
Thats it
Regards
Juan -
How to hide transaction codes that i have worked in command box
Hi ,
Is there any possible way not to display the transaction codes that i have worked in command box . ex: i have used SPRO ,CRMD_ORDER and other transaction codes to open requred screens.Now i can see last 10 transaction codes in command box that i have worked but i dont want to display them .
Please suggest me the solution not to show them.
Points will be rewarded.hi sap crm,
the command box is the create button, isn't it?
if yes, you can remove it by removing authorization for the user that create the order
hopes it helps
cheers
Maybe you are looking for
-
ABAP Proxy : Modification in Structure
Hi Experts, I have one query in ABAP Proxy. I had one customized table type as declared DATA: ITAB TYPE ZABCD. It is having line type as ZABCD_LINE. This is just line type. Now I wanted to add 2 fields in same line type. While using SE11 whenever I a
-
Printing Word Document stored in BLOB from Reports
I have stored images and MS-Word documents in the DB in a BLOB column. Using reports 6, I am able to print the images by setting the File Format property of the item to Image. What I need to know is how can I print the Word document that has been sto
-
Error in j1id - Change / Display
Dear All, I am facing a problem in transaction j1id, while changing or displaying customer excise details. could any one help me out on this ?? Regards, Sridhar S The error is as follows.. Short text Syntx error or generation error in a
-
How to Search for Duplicate Masters?
Is there any way to do this? I've just imported what used to be four separate iPhoto Libraries into one new Aperture Library, with all the Masters referenced in a separate "Master Images" folder on my hard disk. That Master Images folder has a chrono
-
I keep getting a pop-up WEBKIT 2 WEB PROCESS.exe has stopped working and then I can't do anything -- any suggestions as to how I can get rid of this one? but i using safari on windows7.