Sap security check list

Hi all
Could you please tell me the security check list. As a Sap security consultant what T code we need to monitor daily.
Thanks ..
Satya.

Hi Satya Prasad,
Please check the link below to get a better understanding of the critical transactions that need to be monitored on a regular basis.
http://*********************/sox_sod/sox_critical_transactions.htm
I think you may also need to consult with the Internal Audit team, Business Process owners and technical leads to  get the list of critical transactions, reports, tables that need to be monitored on a timely basis.
Thanks,
Kiran Kandepalli.

Similar Messages

  • SAP Support check list

    Hi Friends ,
    Is it any daily/ Weekly check list is their related to SAP-MM for large support projects . other wise wat are the daily routine activity related to SAP-MM other than reciveing the tiecket  in support project .
    Regards
    RB
    Edited by: Raghavendra Balegar on Jun 19, 2009 9:53 AM

    hi
    in support project apart from recieving ticket and closing the ticket is the main.(within the agreed SLA)

  • SAP security - changing check maintain setting for security objects

    I am trying to change the check maintain indicator for a couple of transactions
    to alow me to manage access based on security objects that are not currently defined as check maintain.  Specifically, I have updated the check indicator
    (using SU24) to check maintain for object c_stue_ber on transactions MD11 and MD12 (planned order create/change).  The transactions still do not check this object as expected.  Does anything else need to be done to enable checking an
    object that is not set up as check maintain originally?
    Any help is appreciated.
    Thanks,
    Doug Scott

    Hello Kerstin,
    I also wrote a message to SAP and got the following response.  Looks like there are no security checks for this object in these transactions.
    Regards,
    Doug
    Response from SAP
    03.04.2007 - 12:48:38 CET    SAP    Reply 
    Dear Doug,
    An authority check on C_STUE_BER is not possible for the transactions
    CO02, CO03, MD11, MD12, CO26, CO27, CO28, COOIS, COHV, CO05, CO05N,
    CO04N, COMAC or CO46.
    In CO01 we check if the user has the authority to resolve the BOM
    (C_STUE_BER). After resolving the BOM we don't check any longer with
    C_STUE_BER since we don't work with the BOM but with a component list
    in the order (which is actually a copy or the BOM).
    For this component list there is no authority check.
    The component list is visible in CO02, CO03, CO26, CO27, CO28, COOIS,
    COHV, CO05N, CO04N, COMAC, CO46.
    For production orders we use authority C_AFKO_AWA. With this
    authority you can limit the access to CO02, CO03 and the change of
    production orders by other transactions.
    But please note that there are still transactions
    that will display the orders and its components without authority
    checks. For example infosystem transactions (COOIS, COHV, CO26, CO27,
    ...) and other processing transactions (COGI, ...). For those
    transactions you would have to limit access.
    For the creation of planned orders MD11, the authority check C_STUE_BER
    is not used. Here you can use M_MTDI_ORG to check on a MRP controller.
    So you should enter the same MRP controller in the material master
    of the troublesome products and only this MRP controller will be able
    to create a planned order for this material.
    I am sorry not to be able to offer you any better solution for this
    problem.
    Kind Regards
    Eoin Donnelly
    SAP Support Consultant (SCM)
    SAP GSC Ireland

  • SAP BW on HANA DB Migration - Technical & Functional Assessment Check List Required

    Hello Experts,
    Typically, Before we start SAP BW on HANA DB migration, we would certainly need Technical & Functional Assessment Check List. As per knowledge, to execute BW on HANA DB migration, we would need HANA Admin and Developer, BASIS and BW consultants.
    Can some one share me what exactly these people does in Technical & Functional Assessment ?.
    What could be the duration ?.
    Does this people require to login into the system's physically and perform any activities ?
    Please share me details.
    Thanks,
    HA

    Hi,
    with the perferred (and recommeded) database migration option (DMO) as part of the SUM the need of these Functional Assessment Check List might obsolete, as a lot of manual tasks are integrated into the automated process, which were only available as lists in the past.
    For an Overview, see - Migration BW on HANA - Update 2014 | SCN
    For a detailed step by step, see - SAP First Guidance - Migration BW on HANA using the DMO option in SUM
    Best Regards Roland

  • Windows 2012 server security checklist for corporate company standard/recommended check-list

    Hello All,
    Good Day.
    I am looking for Windows 2012 server security checklist (standard hardening
    settings), would you kindly assist me by providing Wintel 2012 standard/recommended check-list ASAP?
    Thanks in advance.

    Hi,
    The Microsoft Security Compliance Manager 3.0 tool is designed to provide you with an end-to-end solution to help you plan, deploy, and monitor security baselines for computers running Windows Server 2012 in your environment.
    For more detailed information, please refer to the articles below:
    Windows Server 2012 Security Baseline
    http://technet.microsoft.com/en-us/library/jj898542.aspx
    Security Hardening Tips and Recommendations
    http://social.technet.microsoft.com/wiki/contents/articles/18931.security-hardening-tips-and-recommendations.aspx
    Regards,
    Mandy
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • WebDispatcher to PI connectivity check list

    Hi Experts,
    There is a requirement where in SAP-PI is exposing web services to outsiders and for them to be able to access our webservices in a secured manner ,Web dispatcher has been used in between PI and outside partner .
    The problem here is that web service is working fine with SOAP UI environment as http request .But when Partners are trying to access via https they face difficulties .The SSL certificates have already been validated and the partner is able to enter into our network. But not able to access the webservices.
    Can anybody tell me what are the details to be shared with basis people apart from SOAP URL ? Do they(Basis) require WSDL also ? Please tell me check list of configuring web dispatcher for this requirement .
    Format of URL shared is
    https:// hostname:8020/XISOAPAdapter/MessageServlet?channel=NetworkPartners:NP_WO_BS:NP_WODetails_Sender_CC&version=3.0&Sender.Service=&Interface=%5E*
    and this is working fine in SOAP UI.
    Thanks,
    Amar

    Hi Amar,
    We had the same scenario.  A ticket was opened with SAP with this reply:
    ==========================================
    Which documentation exactly are you using to build this enviroment? The SOAP protocol is not supported by web dispatcher. Take a look in the documentation.
    http://help.sap.com/saphelp_nwce72/helpdata/en/48/3ae05299c172d0e10000000a42189c/frameset.htm
    Regards,
    SAP Active Global Support, Business Suite & Technology
    ==========================================
    This of course shocked us because I spoke to another colleague doing the same thing with SOAP through their SAP Web Dispatcher.  I need to follow up but I thought I should throw it out there and see if anyone else has any experience contrary to the SAP documentation.
    Regards,
    John Ta

  • Com.sap.security.core.ume.service failed. J2EE Engine cannot be started

    Hi,
    I have configured SNC on NetWeaver 7.0 (ABAP+JAVA) System on Windows 2003 Server with MS-SQL 2005 Database.
    After the SNC configuration restarted the Server but the JAVA Server process is going down with EXIT Code -11113. The SNC Configuration is working fine but JAVA is not running. SDM and dispatcher are in green but server process is going gray.
    I have checked the log files under C:\usr\sap\SID\DVEBMGS00\j2ee\cluster\server0\log
    The following is the part of log file.
    #1.5#005056BA6C3F001D0000000F000008D8000489ACAFC86070#1277274683393#com.sap.engine.core.service630.container.ServiceRunner##com.sap.engine.core.service630.container.ServiceRunner#######SAPEngine_System_Thread[impl:5]_71##0#0#Error#1#/System/Server#Java###Core service com.sap.security.core.ume.service failed. J2EE Engine cannot be started.
    [EXCEPTION]
    #1#com.sap.engine.frame.ServiceException: <Localization failed: ResourceBundle='com.sap.engine.frame.KernelResourceBundle', ID='UME initialization failed.', Arguments: []> : Can't find resource for bundle java.util.PropertyResourceBundle, key UME initialization failed.
         at com.sap.security.core.server.ume.service.UMEServiceFrame.start(UMEServiceFrame.java:372)
         at com.sap.engine.frame.ApplicationFrameAdaptor.start(ApplicationFrameAdaptor.java:31)
         at com.sap.engine.core.service630.container.ServiceRunner.startApplicationServiceFrame(ServiceRunner.java:214)
         at com.sap.engine.core.service630.container.ServiceRunner.run(ServiceRunner.java:144)
         at com.sap.engine.frame.core.thread.Task.run(Task.java:64)
         at com.sap.engine.core.thread.impl5.SingleThread.execute(SingleThread.java:79)
         at com.sap.engine.core.thread.impl5.SingleThread.run(SingleThread.java:105)
    Caused by: com.sap.security.core.persistence.datasource.PersistenceException: SNC required for this connection
         at com.sap.security.core.persistence.datasource.imp.R3PersistenceBase.newPersistenceException(R3PersistenceBase.java:178)
         at com.sap.security.core.persistence.datasource.imp.R3PersistenceBase.init(R3PersistenceBase.java:446)
         at com.sap.security.core.persistence.imp.PrincipalDatabagFactoryInstance.<init>(PrincipalDatabagFactoryInstance.java:356)
         at com.sap.security.core.persistence.imp.PrincipalDatabagFactory.newInstance(PrincipalDatabagFactory.java:156)
         at com.sap.security.core.persistence.imp.PrincipalDatabagFactory.getInstance(PrincipalDatabagFactory.java:109)
         at com.sap.security.core.persistence.imp.PrincipalDatabagFactory.getInstance(PrincipalDatabagFactory.java:56)
         at com.sap.security.core.InternalUMFactory.initializeUME(InternalUMFactory.java:266)
         at com.sap.security.core.server.ume.service.UMEServiceFrame.start(UMEServiceFrame.java:279)
         ... 6 more
    #1.5#005056BA6C3F001D00000011000008D8000489ACAFC8628E#1277274683393#com.sap.engine.core.Framework##com.sap.engine.core.Framework#######SAPEngine_System_Thread[impl:5]_71##0#0#Fatal#1#/System/Server#Plain###Critical shutdown was invoked. Reason is: Core service com.sap.security.core.ume.service failed. J2EE Engine cannot be started.#
    Please help me to solve the issue.
    Thanks,
    Ajay.

    Hi Tim,
    I have configured using Kerberos library for 32 bit on Net Weaver 7.0 with MS SQL 2005 Server on Windows 2003 Server. I didnt change any thing on JAVA side. I have configured as per the Kerberos configuration steps  as per below URL
    http://help.sap.com/saphelp_nw70ehp2/helpdata/en/44/0ebf6c9b2b0d1ae10000000a114a6b/frameset.htm
    The configuration was successful and I am able to login with out asking password, but After the configuration when I have restarted every thing on ABAP side works well but JAVA server process going down with EXIT code -11113. One of the log file contains follows error message.
    com.sap.engine.frame.ServiceException: <Localization failed: ResourceBundle='com.sap.engine.frame.KernelResourceBundle', ID='UME initialization failed.', Arguments: []> : Can't find resource for bundle java.util.PropertyResourceBundle, key UME initialization failed.
         at com.sap.security.core.server.ume.service.UMEServiceFrame.start(UMEServiceFrame.java:372)
         at com.sap.engine.frame.ApplicationFrameAdaptor.start(ApplicationFrameAdaptor.java:31)
         at com.sap.engine.core.service630.container.ServiceRunner.startApplicationServiceFrame(ServiceRunner.java:214)
         at com.sap.engine.core.service630.container.ServiceRunner.run(ServiceRunner.java:144)
         at com.sap.engine.frame.core.thread.Task.run(Task.java:64)
         at com.sap.engine.core.thread.impl5.SingleThread.execute(SingleThread.java:79)
         at com.sap.engine.core.thread.impl5.SingleThread.run(SingleThread.java:105)
    Caused by: com.sap.security.core.persistence.datasource.PersistenceException: SNC required for this connection
         at com.sap.security.core.persistence.datasource.imp.R3PersistenceBase.newPersistenceException(R3PersistenceBase.java:178)
         at com.sap.security.core.persistence.datasource.imp.R3PersistenceBase.init(R3PersistenceBase.java:446)
         at com.sap.security.core.persistence.imp.PrincipalDatabagFactoryInstance.<init>(PrincipalDatabagFactoryInstance.java:356)
         at com.sap.security.core.persistence.imp.PrincipalDatabagFactory.newInstance(PrincipalDatabagFactory.java:156)
         at com.sap.security.core.persistence.imp.PrincipalDatabagFactory.getInstance(PrincipalDatabagFactory.java:109)
         at com.sap.security.core.persistence.imp.PrincipalDatabagFactory.getInstance(PrincipalDatabagFactory.java:56)
         at com.sap.security.core.InternalUMFactory.initializeUME(InternalUMFactory.java:266)
         at com.sap.security.core.server.ume.service.UMEServiceFrame.start(UMEServiceFrame.java:279)
         ... 6 more
    [Framework -> criticalShutdown] Core service com.sap.security.core.ume.service failed. J2EE Engine cannot be started.
    Jun 25, 2010 3:05:24 AM             com.sap.engine.core.Framework [SAPEngine_System_Thread[impl:5]_69] Fatal: Critical shutdown was invoked. Reason is: Core service com.sap.security.core.ume.service failed. J2EE Engine cannot be started.
    One of the line says "SNC required for this connection". What does this mean? What else need to be done for JAVA to communicate with ABAP?
    Thanks,
    Ajay.

  • Com.sap.security.core.server.secstorefs.WrongKeyException

    Hi,
    we have done a system copy,while starting the java stack we are getting the below error.
    Caused by: com.sap.sql.log.OpenSQLException: Error while accessing secure store: The encryption key (usually in the key file) is not the key that is required to decrypt the data in the secure store file or the system name (SID) is wrong..
            at com.sap.sql.log.Syslog.createAndLogOpenSQLException(Syslog.java:106)
            at com.sap.sql.log.Syslog.createAndLogOpenSQLException(Syslog.java:145)
            at com.sap.sql.connect.OpenSQLDataSourceImpl.setDataSourceName(OpenSQLDataSourceImpl.java:226)
            at com.sap.sql.connect.OpenSQLDataSourceImpl.setDataSourceName(OpenSQLDataSourceImpl.java:197)
            at com.sap.engine.core.configuration.impl.persistence.rdbms.DBConnectionPool.<init>(DBConnectionPool.java:112)
            ... 15 more
    Caused by: com.sap.security.core.server.secstorefs.WrongKeyException: The encryption key (usually in the key file) is not the key that is required to decrypt the data in the secure store file or the system name (SID) is wrong.
            at com.sap.security.core.server.secstorefs.SecStoreFS.openExistingStore(SecStoreFS.java:2017)
            at com.sap.sql.connect.OpenSQLConnectInfo.getStore(OpenSQLConnectInfo.java:802)
            at com.sap.sql.connect.OpenSQLConnectInfo.lookup(OpenSQLConnectInfo.java:783)
            at com.sap.sql.connect.OpenSQLDataSourceImpl.setDataSourceName(OpenSQLDataSourceImpl.java:209)
            ... 17 more
    Caused by: com.sap.security.core.server.secstorefs.InvalidStateException: Internal error during the decryption process.
            at com.sap.security.core.server.secstorefs.Crypt.decrypt(Crypt.java:850)
            at com.sap.security.core.server.secstorefs.SecStoreFS.openExistingStore(SecStoreFS.java:1985)
            ... 20 more
    Caused by: javax.crypto.BadPaddingException: Invalid PKCS\#5 padding length: 30
            at iaik.security.cipher.s.b(Unknown Source)
            at iaik.security.cipher.w.a(Unknown Source)
            at iaik.security.cipher.w.engineDoFinal(Unknown Source)
            at javax.crypto.Cipher.doFinal(Unknown Source)
            at com.sap.security.core.server.secstorefs.Crypt.decrypt(Crypt.java:825)
            ... 21 more
    #1.#000255334607000000000015000640DE00046E8629009A5B#1247422399420#com.sap.engine.core.Framework##com.sap.engine.core.Framework#######Thread[Thread-1,5,main]##0#0#Error#1#/System/Server#Plain###Loading: ConfigurationManager returned false! #
    #1.#000255334607000000000017000640DE00046E8629009BC2#1247422399421#com.sap.engine.core.Framework##com.sap.engine.core.Framework#######Thread[Thread-1,5,main]##0#0#Error#1#/System/Server#Plain###Kernel not loaded. System halted.#
    #1.#00025533460700000000001A000640DE00046E862908A703#1247422399948#com.sap.engine.core.thread.impl5.ThreadManagerImpl##com.sap.engine.core.thread.impl5.ThreadManagerImpl#######Thread[Thread-1,5,main]##0#0#Error##Plain###Unexpected thread activity after interrupt() is executed in shutdown of SAPEngine_System_Thread[impl:5]_ThreadManager:
    Thread[SAPEngine_System_Thread[impl:5]_2]
    Task: com.sap.engine.core.thread.impl5.ActionObject - Processing Task [classname: com.sap.engine.core.cluster.impl6.JoinPortListener | toString: com.sap.engine.core.cluster.impl6.JoinPortListener@252e252e] with classloader [com.sap.engine.boot.CoreClassLoader@21d821d8]#
    Regards,
    Sam

    Hi,
    Check with this note,
    Note 791574 -
    Also
    Secure Storage for Application Specific Data
    Applications or application components, deployed on the J2EE Engine, can save sensitive data
    in encrypted form in a secure storage area in the J2EE Engineu2019s configuration database. The
    data saved in this area is encrypted using a secret key that is created explicitly for the application
    or service. The J2EE Engine uses the triple DES algorithm to perform the encryption.
    You can use two approaches for storing and maintaining the encrypted data for the individual
    applications or application components:
    u2022 Centralized storage
    With centralized storage, applications or application components use the Secure Storage
    service on the J2EE Engine to encrypt and decrypt the data. This data is also stored in the
    corresponding secure storage context on the J2EE Engine. You can control the
    parameters of this secure storage area from the properties of the Configuration Manager.
    For more information
    u2022 Decentralized storage
    With decentralized storage, the applications and application component maintain their own
    storage area for the encrypted data. They only uses the Secure Storage service on the
    J2EE Engine to retrieve the key, which is necessary to encrypt and decrypt the data.
    Regards,
    Ravi

  • Post-upgrade ToDo, PI configuration Wizard: com.sap.security.api.DuplicateKeyException Group found, but unique name "SAP_SLD_DATA_SUPPLIER" is not unique!

    after PI-Upgrade to NW-PI-731-SP07,  executing the PI-configuration wizard:
    step 126 of 162
    Assign SLD Data Supplier user to Group SAP_SLD_DATA_SUPPLIER (local SLD)
    Error:
    Group found, but unique name "SAP_SLD_DATA_SUPPLIER" is not unique!
    Execute Java Service
    Library: sap.com/tc~lm~ctc~util~core_ear
    Class: com.sap.ctc.util.core.services.UserFacade
    Method: void com.sap.ctc.util.core.services.UserFacade.addUserToGroup(java.lang.String, java.lang.String)
    Arguments (2)
    userName : SLD_DS_EXE
    groupName : SAP_SLD_DATA_SUPPLIER
    InvokeService- Result: ERROR
    Refresh Env. Messages: false
    Duration: 1.936 sec
    Library Info
    Default Trace
    Exception Class: com.sap.security.api.DuplicateKeyException
    Exception Message: Group found, but unique name "SAP_SLD_DATA_SUPPLIER" is not unique!
    com.sap.security.api.DuplicateKeyException: Group found, but unique name "SAP_SLD_DATA_SUPPLIER" is not unique!
    at com.sap.ctc.util.infra.rfc.BaseConfig.dispatchException(BaseConfig.java:230)
    at com.sap.ctc.util.core.services.impl.ume.java.GroupJavaImpl.verify(GroupJavaImpl.java:121)
    at com.sap.ctc.util.core.services.impl.ume.DualGroupImpl.verify(DualGroupImpl.java:118)
    at com.sap.ctc.util.core.services.content.ume.UserService.addToGroup(UserService.java:725)
    at com.sap.ctc.util.core.services.UserFacade.addUserToGroup(UserFacade.java:288)
    what to do?
    ============
    o.k.
    https://service.sap.com/sap/support/notes/1016283
    first run the UME consistency check => found some inconsistency => did repair UME
    then run again UME consistency check => found no more inconsistency !!
    the again - try to run the PI-Upgrade-Wizard => but again error on executing .....

    see this sap-notes:
    http://service.sap.com/sap/support/notes/1617234
    http://service.sap.com/sap/support/notes/1661135
    http://service.sap.com/sap/support/notes/1678815
    http://service.sap.com/sap/support/notes/1626747

  • Why can't I get secure mailing lists to work in IMS 5.1

    I am having problems getting secure mailing lists to work at all. I
    have been battling with iPlanet support and have gotten no where. Evan
    though a local user or a remote email user is listed as allowed senders
    in the IDA, it still will not let either send a message to the list. I
    checked to make sure that the allowed senders showed up in the LDAP
    entry as mgrpallowedbroadcasters and they are. I evan set up a test
    server from scratch and ran into the same issue. Each time an allowed
    user tries to send they get the following error:
    SMTP Error: 5.7.1 you are not allowed to use this list:
    [email protected]
    Anyone else seeing these issues?? Does anyone what could be going
    wrong??

    I'm not sure what is happening, but here are some tips to help debug the problem.
    Put MM_DEBUG=5 in your option.dat file and recompile/restart dispatcher. Put master_debug slave_debug in the defaults section or only appropiate channels and then recompile/restart dispatcher.
    The resulting logs should give you information about just why it is failing.

  • Access denied by Page security check

    Hi,
    I would like to allow access to page 1 only to users in the group 'CPY'
    i do un authorizzation scheme 'CPY_GROUP' (exists sql query type)
    SELECT '1'
    FROM GRP gr, USG ug, USR us
    WHERE gr.GRP_APP_ID='CRM'
    AND gr.GRP_ID = 'CPY'
    AND us.USR_ID = UPPER(:P101_USERNAME)
    AND us.USR_ID=ug.USG_USR_ID
    AND gr.GRP_ID=ug.USG_GRP_ID;
    on the page 1, on the security session, i pick 'CPY_GROUP' from select list
    when run my application with a user of 'CPY_GROUP' i have the error
    Access denied by Page security check
    Error      You are not authorized to access this function. (my Identify error message displayed when scheme violated)
    Any help?
    Thanks in advance
    km

    Hi Scott,
    I am facing a similar kind of problem. I am using :P101_USERNAME only in login page to check for user name and password. I have not used it in any of the further pages.
    But i am still getting the error "Access denied by Page security check". Please suggest me some solution.
    Thanks in advance,
    Anjali

  • Item based security on List

    Hi,
    I have a list with 3 columns
    Column Name| Column Type
    Employee | Person/Group
    First Name | Single Line Text
    Last Name | Single Line Text
    As the Employee column is of type "Person/Group", I want to apply item based security on this list. For example if Person A is logged in, he MUST NOT be able to update record of others, But yes, he should have rights to update his own Row (Item).
    Please let me know how can i achieve such item based security in list ?

    Hi,
    From your description, I know you want to restrict users to edit items when he is the owner of current item.
    You can try these codes below:
    using System;
    using System.ComponentModel;
    using System.Web;
    using System.Web.UI;
    using System.Web.UI.WebControls;
    using System.Web.UI.WebControls.WebParts;
    using Microsoft.SharePoint;
    using Microsoft.SharePoint.WebControls;
    namespace VisualWebPartProject1.VisualWebPart1
    [ToolboxItemAttribute(false)]
    public partial class VisualWebPart1 : WebPart
    // Uncomment the following SecurityPermission attribute only when doing Performance Profiling using
    // the Instrumentation method, and then remove the SecurityPermission attribute when the code is ready
    // for production. Because the SecurityPermission attribute bypasses the security check for callers of
    // your constructor, it's not recommended for production purposes.
    // [System.Security.Permissions.SecurityPermission(System.Security.Permissions.SecurityAction.Assert, UnmanagedCode = true)]
    public VisualWebPart1()
    protected override void OnInit(EventArgs e)
    base.OnInit(e);
    InitializeControl();
    protected void Page_Load(object sender, EventArgs e)
    SPSecurity.RunWithElevatedPrivileges(delegate()
    SPWeb currentWeb = SPContext.Current.Web;
    String currentUserName = currentWeb.CurrentUser.LoginName;
    SPSite site = new SPSite("http://sp/sites/sharepoint2013");
    SPWeb web = site.OpenWeb();
    SPList list = web.Lists["ListA"];
    web.AllowUnsafeUpdates = true;
    foreach (SPListItem item in list.Items)
    string username = GetUser(item, item.Fields["Employee"]).LoginName;
    //break from parent permissions
    item.BreakRoleInheritance(false);
    //delete any existing permissions in the
    //case that this is an update to an item
    SPRoleAssignmentCollection currentRoles = item.RoleAssignments;
    foreach (SPRoleAssignment role in currentRoles)
    role.RoleDefinitionBindings.RemoveAll();
    role.Update();
    if (username.Equals(currentUserName))
    //create"contributor" role
    SPRoleDefinition roleDef = web.RoleDefinitions.GetByType(SPRoleType.Contributor);
    SPRoleAssignment roleAssignment =
    new SPRoleAssignment(
    currentUserName,
    string.Empty,
    string.Empty,
    string.Empty);
    roleAssignment.RoleDefinitionBindings.Add(roleDef);
    //update list item with new assignment
    currentRoles.Add(roleAssignment);
    item.SystemUpdate();
    else
    //create"reader" role
    SPRoleDefinition roleDef = web.RoleDefinitions.GetByType(SPRoleType.Reader);
    SPRoleAssignment roleAssignment =
    new SPRoleAssignment(
    currentUserName,
    string.Empty,
    string.Empty,
    string.Empty);
    roleAssignment.RoleDefinitionBindings.Add(roleDef);
    //update list item with new assignment
    currentRoles.Add(roleAssignment);
    item.SystemUpdate();
    private SPUser GetUser(SPListItem item, SPField userField)
    string currentValue = item[userField.Title].ToString();
    SPFieldUser field = (SPFieldUser)userField;
    SPFieldUserValue fieldValue = (SPFieldUserValue)field.GetFieldValue(currentValue);
    return fieldValue.User;
    The screenshot below is my result:
    Vincent Han
    TechNet Community Support

  • Check List for CR ( Chnage Request) And Type of CR's

    Hi All,
    I am going to work on Change Reqest in BI. So for going forward, i would like to know the Types of CR's and Check list of each type of CR. Please i need very urgent.Plz give your inputs as early as possiable.
    Thanks & Regards,
    Venkat
    Edited by: vanarasi venkat on Apr 16, 2008 8:40 AM

    Hi Venkat,
    go through these links ...u can get the req info
    [https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/e0c9c8be-346f-2a10-2081-cd99177c1fb9]
    [/people/evan.stoddard/blog/2006/01/03/sap-solution-manager-new-info-blog]
    [https://websmp105.sap-ag.de/goinglivecheck]
    here check on left for FAQs
    [https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/08f1b622-0c01-0010-618c-cb41e12c72be]
    go through this thread
    [Is there a BW implementation checklist?;
    regards,

  • Check list document

    Hi friends,
    Can any one Send me some of Code review check list points documents for reports,interfaces,forms.
    So that i can use these format in my project , since we don't have a standard check list formats.
    Points are sure....
    Regards,
    Anil.

    Hi ,
    bewlo naming convention document provided by SAP,in my project also i am taking this document as the reference.
    http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/40a66d0e-fe5e-2c10-8a85-e418b59ab36a
    coming to designing optimal solution,it depends on how you avoid going for XSLT Mappings,JAVA Mapping(Perfromace issues)
    How you implement the mappiong with less number of function using effectively,
    how you willa void Integration Process in Project and if its required how to use the steps provided SAP in ccBPM,some of the steps will take more resources,I dont have specified link for best practices guide,but search in sdn you will find it.
    Regards,
    Raj

  • Check list for Customization of FI module

    SAP Guru's
    Can any one guide me for Steps/check list for customisation of FI module
    and how to document it.
    Sandeep

    Hi,
    In SAP, there are quite a few configuration steps which are required in each and every FI implementation. However, it will be different in each client, depending upon several factors like Business Processes / requirements of the client / what modules are being implemented / what interfaces are to be maintained etc.
    Similarly, if FI module alone is implemented it will be simple, but if FI and CO are implemented, it will be complex. Hence, I suggest first understand the requirements in  a broad manner and based on that you can arrive on what configuration needs to be done.
    Also note that SAP standard configuration will already exist and you can copy most of the settings to your Company Code(s).
    At the high level, Organization structure has to be created based on Business requirements like Company Codes, Credit Control Area, Controlling Area, Operating Concern, Sales Organization, Division, Plant etc.
    Some of the specific configuration steps in FI are creation of Chart of Accounts, Document types, Field Status variant, Account Groups for Customer / Vendors etc. This is not exhaustive and you can look at IMG to identify the different config steps required for your client.
    Thanks
    Murali.

Maybe you are looking for

  • Accessing the different accounts of Apple, how do I manage this confusion?

    I have recently change my password for icloud or Apple or Itunes?  I have several passwords now than I can handle of which is for which services. Do I have a website I can go to as for this information? Otherwise, the difficulty of getting the right

  • Execute_query problem on a 10g AS for forms

    Good evening A problem arises on a execute_query forms for AS 10g. On Windows, a data block is refreshed by a execute_query in a when-new-block-instance. Under Linux, the action fails. Would you know what type of problem? Thank you and good weekend.

  • Password Protecting Files

    Does anyone know of any good tools to use within a Java app that allow for the program to password protect the file before the user downloads the file? A specific example for our system is a user will click an XLS link that will call a servlet that w

  • My ipad shows in windows but not in itunes

    ive tried everything ..even reinstallin itunes but my ipad doesnt show up in itunes ..when i plug my ipad in my computer ..i check and My Computer and its there but when i check in itunes its not there...HELP!!!!!

  • SMDR wierdness.

    Hi; We have a two node OES2 SP3 Linux Cluster which has been running fine.Smdr, Slp, EDirectory all network services were working fine and nothing has changed. Tuesday I noticed that my Clustered Resources weren't being backed up on one node. This no