Portal Security tracking

Hi,
We have a requirement for to monitor unauthorized accesses to our Portal and also to track the information accesses via authorized accesses. Currently, we do not have LDAP.
What Tools/Products do we need to use to satisfy these requirements. Will SAP GRC be able to do this?
Thanks
Cyrus

What do you mean by "unauthorized access"?  Does this mean attempts to logon with an invalid username/password? If so, I don't know of any standard way to report this in a meaningful way, such as IP address of browser etc.
Once the portal user has authenticated, then they see their options. That's all they can see, but it's only a menu. It's not like an ABAP system where users can try to execute other transaction codes. That's not really possible with the portal, as there is nowhere  to start something else.
A user can try and execute directly a portal app  which they are not authorised to do, by using a special URL. If you want to monitor this, then you need to analyse the security trace files.

Similar Messages

  • Oracle Forms and Portal. & Portal Security

    I need the following questions answered for a client who is
    trying to move from IIS to Oracle Portal. any pointers would be
    extremely helpful
    1. How to configure Oracle Forms to run with Portal.
    2. Is it possible to display forms inside a Portlet. If so, will
    the forms hold the same state when the page is refresed.
    3. Is it possible to display WORD/PDF/EXECL documents in their
    native format inside a Portlet.
    4. Any information on how IIS security integration is possible
    with POrtal. i.e ( if there are ASP pages running on IIS
    security, how to integrate it with Portal Security mechanism
    -Thanks
    ganesh

    You can create roles in Oracle with the appropriate privileges to access the application. For example,
    you could create a role that has only read access to all the tables in the database. You could assign this role to the menu. Also, you may want a role for a manager that whould enable him to insert data or to see a few special forms. You could assign this role to the menu associated with the form.
    Using Form Builder, you can manage menu security with Oracle server roles. After defining the roles to use for a menu module, you could then specify the roles that have access to each menu item. When you set the 'Use Security' property of a menu module to 'Yes', the form enforces security. After setting the 'Use Security' property to 'Yes', you can use 'Module Roles' property to construct the entire list of roles with access to that menu module.
    I hope it helps.

  • How to get current IUser (com.sapportals.portal.security.usermanagement)

    Hi,
    does anybody know how to get IUser for the current user?
    I know how to get current IUser from com.sap.security.api package:
    IWDClientUser wdcu = WDClientUser.getCurrentUser();
    IUser sapUser = wdcu.getSAPUser();
    but I need to have IUser from com.sapportals.portal.security.usermanagement package.
    Regards,
    Ladislav

    Ladislav,
    Try this:
    Get the IUser uisng the API com.sap.security.api.IUser and store it in a variable, say <i>sapUser</i>.
    Then,
    // Convert the logged in user to old EP5 usermanagement API
    com.sapportals.portal.security.usermanagement.IUser user = null;
    try
         com.sapportals.portal.security.usermanagement.IUser user = WPUMFactory.getUserFactory().getEP5User(sapUser);
    catch (UserManagementException e)
         e.printStackTrace();
    Bala

  • How to set portal security context for a procedure

    Hi, I have procedure that needs to call some of the PDK APIs (WWSBR_API), but outside the scope of the web browser, i.e, automatically via a DBMS_JOB or queue. There is no HTML outputted, but rather a log entry made to a custom table.
    The schema that this custom pkg belongs has all the necessary grants made to it from provsyns so that it should run.
    How do I programatically set the context of the portal security so as to make the PDK APIs think it has been invoked by a Portal Adminstrator or a user with sufficient privs to perform the actions against the PDK and therefore not bomb out with security exceptions? I have seen this documented quite some time ago, but cannot find the details.
    Regards
    John

    You need to use the wwctx_api.set_context procedure.
    http://portalstudio.oracle.com/pls/ops/docs/FOLDER/COMMUNITY/PDK/plsql/doc/sdk11scp.htm

  • Doument Access - using Portal security or Document Database security

    I originally posted this on the Security Form, but realized that it might be solved using the PDK.
    I have a table in my database that contains information about a document (Name, Rev, Author, groups that have access). I want users to login to my portal and in a portlet, I want them to be able to click which docs they have access to see; based on who they are logged on as.
    Would I use the PDK for this? If I use portal security, I think I will be maintaining the security twice (database and portal).

              Hi Wendell,
              There is a patch available for this known problem. Please contact BEA support and
              ask for patch CR075892_70.jar for WLS 7.0.
              Thanks!
              Deb
              Wendell Nichols <[email protected]> wrote:
              >I have the opposite problem. My ejb always is denied access to the adapter
              >resource. I'm a Weblogic novice, (but the adapter works on other servers,
              >I'm testing on WL to ensure it works there).
              >How do I get the minimum security in place to test my adapter?
              

  • Import com.sapportals.portal.security.usermanagement.IUser;  is deprecated

    import com.sapportals.portal.security.usermanagement.IUser;  is deprecated
    Is there any alternative???

    Hi,
    could please tell me, what kind of jar-file I have to add to the project to use
    com.sapportals.portal.security.usermanagement.IUser ?
    Thank you in advance.
    Kind regards, Patrick.

  • IUser problem with com.sapportals.portal.security.usermanagement

    I am trying to get the current user so I have written
    IUser user = request.getUser();
    I have imported com.sap.security.api.*;
    The compiler insists I need com.sapportals.portal.security.usermanagement.IUser
    I thought that version was deprecated or at least not the preferred method?
    It keeps saying my classpath is incomplete. Why can't it use the IUser from the com.sap.security.api?
    Any help would be greatly appreciated.
    Thanks
    Paul

    Update
    The offending line appears to be IResourceContext myContext = new ResourceContext(user);
    when this line is added it causes the above error which I can only assume is because ResourceContext(user) accepts a different kind of user object. does anyone know if there is another way to do this? Here is the rest of the code to see where i am headed:
    IUser user = req.getUser();
    RID rid = RID.getRID("/temp");
    IResourceFactory factory = ResourceFactory.getInstance();
    IUserFactory uf = UMFactory.getUserFactory();
    IResourceContext myContext = new ResourceContext(user); //this is the line causing the problems.
    IResource resource = factory.getResource(rid, myContext);
    if(resource.isCollection())
    ICollection collection = (ICollection)resource;
    IResourceList children = collection.getChildren();
    Iterator i = children.listIterator();
    the point is i am trying to get the ACL permissions on the children of the rid

  • Package com.sapportals.portal.security.usermanagement : No javadoc ?

    Dear all,
    I tried to find the javadoc concernig this package "com.sapportals.portal.security.usermanagement" but I did not find it.
    Does anyone have any clue where to find it please ?
    Thank you advance.
    Best Regards.
    Greg.

    Hi Greg,
    I think the reason you're not able to find is because com.sapportals.portal.security.usermanagement is now deprecated. For EP 6.0, the old classes have been re-written to map to the new UME 4.0 classes and methods contained in com.sap.security.api.
    please see the document below for details...
    USING THE NEW USER MANAGEMENT API IN EP 6.0
    https://www.sdn.sap.com/irj/sevlet/prt/portal/prtroot/docs/library/uuid/91f0cd90-0201-0010-a190-c4d7cbd5b463
    hope this helps,
    harman

  • DC for com.sapportals.portal.security.usermanagement .IUser

    Hello all,
    When developing a local application I can reference class com . sapportals . portal . security . usermanagement . IUser via NWDS local libraries using ECLIPSE_HOME variable and referencing jar file com.sap.security.api.ep5.jar.
    There is a standard DC that has this class or jar file?
    Or should I add this JAR to an external library.
    Regards,
    Mauricio

    Hi,
    You will have to add this jar as an enternal library.
    Ashu

  • Portal Security with existing JSP Applications

    Hello,
    we have some existing JSP Applications an want to include them into out portal. They are currently running on iAS as standalone applications. But we also want to protect them using portal security.
    How is it possible to use Portal Security for those JSP Applications.
    Regards,
    Frank

    Hello,
    currently I don't need to include them as portlets.
    I included the first Page as jsp Report... because of that, this jsp is secured. But my application has more jsps.
    Probably I could set an sessionvariable in the first protected jsp and check it in all other jsps. If this sessionvar is not existing, the user is not allowed to see this application.
    Currently I have no other idea.
    Regards,
    Frank

  • Portal Security  7.x  documents

    Hi
    Can anyone please point me the link about Enterprise Portal Security document based on EP 7.x.
    Thanks again

    Hi Suresh,
        Please refer the below link for Security, SSO, and Authentication. It would be of great help.
    Award good points for useful answers.
    http://help.sap.com/saphelp_erp2005/helpdata/en/42/ea2fcfb2201bdae10000000a11466f/frameset.htm
    Regards,
    Ramesh
    Message was edited by: RAMESH PARAMESWARAN

  • Best and most secure tracking option for large scale iPad deployment?

    Hi, we are deploying iPads to hotel rooms on a large scale basis and need to find an appropriate solution to securely track them in case they are stolen.
    We are actually considering Find my iPhone for its simplicity, but the 100 devices limit and also the fact it is relatively easy to disable poses a problem.
    On the other spectrum there is AirWatch which is very expensive.
    I was wondering if any other options are available for this?
    Best regards
    Florian

    MobileIron Sentry iPad app, enterprise IT departments can track iPhones and iPads, view device inventory, block offending or compromised devices, and remotely wipe stolen, lost or compromised units. The application also enables remotely suspending email access for active staff, just-terminated employees, and others.
    Just read about it.

  • Oracle Poratal Security Or Portal Security Infrastructure

    We need to implement the Oracle Portal Application user for Authentication and Authorization. We have different pages for different user roles, so please help me how can I use "Oracle Poratal Security Or Portal Security Infrastructure" for securing porlets or pages from unauthorized accesss.

    I suggest taking a look at chapter 6 - "Securing your Portal" of the OracleAS Portal Configuration Guide to get an idea of the security architecture and at the security-related information in the Portal User's Guide.
    You can find these guides in the Application Server documentation library on OTN at http://www.oracle.com/technology/documentation/appserver101202.html

  • External Portal - Security Best Practice

    We will be initiating an external portal for ESS access. For those using ESS from home, what type of additional security access is anyone using if the person happens to lock themselves out of their ESS account? Do you have a security question built into ESS? Are you using a security grid to reset their password? I'm looking to see what other alternatives people are using.
    Thanks
    Pam Major

    Hi Tim: Here's my basic approach for this -- I create either a portal dynamic page or a stored procedure that renders an HTML parameter form. You can connect to the database and render what ever sort of drop downs, check boxes, etc you desire. To tie everything together, just make sure when you create the form, the names of the fields match that of the page parameters created on the page. This way, when the form posts to the same page, it appends the values for the page parameters to the URL.
    By coding the entire form yourself, you avoid the inherent limitations of the simple parameter form. You can also use advanced JavaScript to dynamically update the drop downs based on the values selected or can cause the form to be submitted and update the other drop downs from the database if desired.
    Unfortunately, it is beyond the scope of this forum to give you full technical details, but that is the approach I have used on a number of portal sites. Hope it helps!
    Rgds/Mark M.

  • Portal security import/export errors ORA-01653

    When doing a security export after a few attempts we are getting the following error
    ORA-01653: unable to extend table PORTAL30.WWUTL_SEC_TX_PERSON$ by 2362205 in tablespace PORTAL
    Details below
    We referred the note related to ORA-01653 on metalink Note:151994.1 and tried the approaches mentioned but nothing seems to fix it.
    Is there an isssue with the way the Portal scripts clean up the transport tables.
    We are using pORTAL V 3.0.9.8.1 WITH 8.1.7 release of database
    Connected to:
    Oracle8i Enterprise Edition Release 8.1.7.1.0 - Production
    With the Partitioning option
    JServer Release 8.1.7.1.0 - Production
    Extracting Security Data to transport tables...
    Activity Log:
    Clearing any existing security data from transport tables
    Truncating table WWUTL_SEC_TX_GROUP$
    Truncating table WWUTL_SEC_TX_MEMBER$
    Truncating table WWUTL_SEC_TX_SYS_PRIV$
    Truncating table WWUTL_SEC_TX_PERSON$
    Truncating table WWUTL_SEC_TRANSPORT_TABLE$
    Begin extracting security data of Portal
    Extracting Security Data...
    Global Privilege export flag set to: on... (ON = export global privilege, OFF =
    do not export global privilege)
    ...Extracting Users...
    WWUTL_API_SecurityTransport.ExtractPerson: ORA-01653: unable to exte
    nd table PORTAL30.WWUTL_SEC_TX_PERSON$ by 2362205 in tablespace PORTAL
    Disconnected from Oracle8i Enterprise Edition Release 8.1.7.1.0 - Production
    With the Partitioning option
    JServer Release 8.1.7.1.0 - Production
    Export of Security Data Complete

    Sudip,
    Ravi is the authority in this area. I understand he is already working with you on this issue.
    Thanks,
    PE

Maybe you are looking for

  • Need help with my iphone 4 - i wont turn on

    My iphone 4 has decided to turn itself off in the night and I can't turn it back on. It has a full charge and holding the home and lock buttons down together doesn't work no matter how long you hold them down for. What do I do?

  • I have my music loaded in Real Player and iTunes won't read it?

    Hi, I'm new to ipods... I have a library of 87g of music on a external hard drive. I'm trying to convert all my music so I can play it on my Ipod and I can't. does it means that I have to re load all my CD to the compter read by itunes or there is a

  • How to move materials from one sloc to another sloc  materials are more tha

    Hi, Can any one help me on this issue How to move materials from one sloc to another sloc  materials are more than 1000 and from existing sloc to new sloc which is Hum managened i need help onthis issue thanks

  • 'Upgrading' from PC to iMac

    So Santa has brought me a iMac for Christmas - yeah Santa! I'm currently running Lightroom 2.7 on my PC and was wondering if I may be able to upgrade to Lightroom 3 for my new Mac using the serial number from my version 2 PC version. Do you know if t

  • Bex POPUP Window. How to Customise

    Hi BW Experts,   Currently i am using the BEx Analyser for my reporting.I am  entering the wrong values in Selection screen. By hitting the OK Button, the system throws an error message in the POPUP Window.After clicking the OK button, the POPUP disa