Security Optimization Self Service and EWA
Hi,
I am curious if you can keep on using the same SOS session?
The ST14 data is of course different from every collection, but what about the preliminary data collected from the EWA download? Is this getting updated in the session (which I doubt) or do you need to close the current session and then create a new one?
What about if you reinitialize a session fx. once a month. Will the data from the weekly EWA download then be updated?
Hi,
Thank you for responding.
This was also what I expected, so thanks for confirming this.
Do you by any chance now why there are three checks (0303-0305) which is not rated, and do not contain any data at all? The data is collected in the ST14 upload.
I tried asking this in the security check department a couple of weeks ago, but it was apparently not the right place, since I have not got an answer :-).
Note 837490 says that this could be because ST-SER is newer than ST-A/PI, but I have got the newest version available.
Thanks
Similar Messages
-
Security Optimization Self-Service. Checking profiles
Dear All,
I am using Security Optimization Self-Service and would like to know if there is a way to implement a "customer specific authorization check" to evaluated if somebody is granted with profiles SAP_NEW or SAP_ALL_DISPLAY.
I will appreciate ideas and suggestions.
Regards,
FedeX.No idea, but if there is nothing in the trace or SU53, then typically the check is either performed against a different user (possibly in a different system) or it is dependent on a config setting first, and not authorizations.
Normally I look around in the menus of the transaction to see whether there is a config option there, failing which use System -> Status -> Navigate and expand the object hierarchy. Keep your eye out for a view.
Otherwise, take a look in the PBO (Process Before Output) module to see what is setting this in the dynpro.
A shot in the dark, but might help in the right direction.
Cheers,
Julius -
Security Optimization - Self Service
Hi There ,
I am trying to reproduce a "howto" document regarding SECURITY OPTIMIZATION WITH SOLMAN.
I was able to run ST14 in the analyzed system and sent it to SolMan. But I do not find the way to find the "Security Optimation - Self/Service" option in SolMan in order to see or load the ST14 results.
(The version of ST-ICO is 150_700)
I will appreciate any idea
FedeXThanks Paul,
I was trying this part :
On Solution Manager you can see this data in the Service Session.
DSWP > Service Plan >Self Delivered Services > System Security Optimization > SDCCN Data
Then you can view in Session Workbench, create your questionniare, etc.
But I do not get shown the option "System Security Optimization"
The option list that I get under Service Plan is
SAP Delivered Services | Self Delivered Services | Service Channel | Certificates | SDCCN Data | Graphics
when I select Self Delivered Services I get like the column of a report with the following colums
Service I Status I Planned on I Project I Milestone
btw I also try SDCCN Data option but there is like a kind of criteria for report there (Selection criteria)
Some idea how to get the option System Security Optimization displayed ?
Thanks in advance
FedeX -
Security Optimization Self-Service. ST13
Hi There,
Using transaction ST13 to define customer specific checks, I am able to input KeyFigure & Comments .
1. Is is possible to have these Info in the SolMan report ? how could I do that ?
2. Are the rules in this area evaluated / grouped by Key Figures? or in contrast all rules are evaluated together undependably of what they have as key figure ? in that case what is the reason/function of the key figure?
Thanks in advance,
FedeXHi,
I still test and no quit sure if I am doing the right process...what I have done:
use st13 to create my own alerts > 9000.
use st14 for creating the report on target system... I check on the target system and by viewing data of the generated report there is a list of users because security specification > 9000.
export report to SolMan ... successfully
on SolMan ... what are the steps that I have to do?..I am not quit sure ... I go to session workbench ...here there are already some info of the previous check that I did days before ...... I click on the option collect data (ST13, ST14)..I delete the old number and introduce the new GUI Number and click on collect button... the rest of the fields are filled in ... and no additional message appear..
one of the existing entries on the left side is Customer specific Auth check ...it is in red..
being on the collect data (ST13, ST14) entry I just click on save + next open check an the focus/cursor jump automatically to the last entry check session consistency I do not identify any change in the entry Customer specific Auth check which still red and not showing the expected list ( what I see in target system)
well hope this give some idea about the issue and possible solution
Thanks
FedeX -
Business Package for Student Self Service and Faculty Self Service in EHP3
Dear All,
Can you tell me what all business packages available to provide Student Self Service and Faculty Self Service in the portal.
I am using EHP3.
Please tell me the name of the business packages so that we can download and integrate in portal.
If possible please tell me what functionalities are provided for student and faculty as self service in EHP3.
I did not want to mention this, but I have to say that its really very important for me for one of big prospective customer. I have to show a demo for Student Portal (Student Self Service)and Teacher Portal (Faculty Self Service).
PLEASE HELP
Thanks and Regards
Sudhir GuptaDear Sudhir,
Please check installation guides and OSS notes on pre-requisites at: www.service.sap.com/erp-inst
Hope this will be helpful.
Regards
Vinod Kumar -
Performance Optimization Self Service- SAP help requirement
Hi,
I want to know whether for SAP's help is required for performing the self service of Performance Optimization.
If we collect ST12 trace and use it to perform the self service then is the report which is generated from the self service sufficient to take further action or will I need some SAP expertise to implement / take corrective actions?
In short, whether I can do the Performance Optimization by myself or I need help from SAP?
Regards,
Vishalhi,
1) Is this service available to all the customer? (by all the customers I mean "Max Attention", "Enterprise Support" etc)
i answer this above is it, from mz above reply, have you checked
enterprise support customers can get five EGI sessions as free per year. please check
http://service.sap.com/esacademy
- click browse egis
for your second question also I answered above
Does the report itself gives suggestions or we need to provide the report to SAP
here my reply above
because Guided procedure itself the proven methodlogy from SAP, the report provides the lots of suggestions against the SAP best practices.
you can use it yourself most of the time. if still you need expert guidance from SAP, book for EGI sessions. they called as expert guided implementations, remote support. duration might vary based on the session.
again, service report is the source, you have to review yourself, if you are in EGI, sap use that report for guiding. Please review
Thanks
Jansi -
I created new menu For Manager Self SErvice and added the transfer manager
Hi SSHR Gurus
I Manager transfer sshr function to Custom menu.But This function is not functioning the way it works on Manager self service. Any thoughts on this greatly appreciated.
Cheers
kumar csHi kumar,
You need to double check in your custom menu you have added Manager Menu action without prompt and you setup profile option HR:Manager Actions Menu against responsibility.
Also, after that you need to bounce Apache and clear cache.
For more information about Manager Action Menu please refer to note :
Note 263015.1:Deploying SSHR Capability Implementation Guide
Chapter 2 page 2-11 ----- > Menus for Managers
Thanks,
Mounir -
Sec. Optimization self-service - Customer specific auth Checks
Hi There,
checking some automatic check like 0750 I see in SolMan there are some tabs like Green, Red, Recommendation (0705)
checking the Customer specific auth Checks I found out only some of them.... I would be interested to know if it is possible to configure "something" in order to have the tab Recommendation (9XXX) for Customer specific auth Checks .
Thanks
FedeX.Hi,
I still test and no quit sure if I am doing the right process...what I have done:
use st13 to create my own alerts > 9000.
use st14 for creating the report on target system... I check on the target system and by viewing data of the generated report there is a list of users because security specification > 9000.
export report to SolMan ... successfully
on SolMan ... what are the steps that I have to do?..I am not quit sure ... I go to session workbench ...here there are already some info of the previous check that I did days before ...... I click on the option collect data (ST13, ST14)..I delete the old number and introduce the new GUI Number and click on collect button... the rest of the fields are filled in ... and no additional message appear..
one of the existing entries on the left side is Customer specific Auth check ...it is in red..
being on the collect data (ST13, ST14) entry I just click on save + next open check an the focus/cursor jump automatically to the last entry check session consistency I do not identify any change in the entry Customer specific Auth check which still red and not showing the expected list ( what I see in target system)
well hope this give some idea about the issue and possible solution
Thanks
FedeX -
Hello All,
Can anybody let me know the step by step procedure on how to use the self service security checks tool used in solution manager for Audits..Hi,
Apart from the note, have you checked that the user starting the ST14 data collection has
all the authorizations acocording the note above?
Are you able to display the information collected in transaction ST14
under the Utilities ->Analysis browser menu option?
Please check also the following note that can be helpful:
967938 - Security Optimization Self-Service: SDCC download
Please also review and follow the steps described in the documentation
"HOWTO: Using the Security Optimization Self Service" ?
The documentation as well as SAP Tutor file are available in the
path below in service marketplace.
http://service.sap.com/sos
-> Media Library
Please firstly review the documentation and ensure that the steps
are followed correctly.
Hope this helps.
Cheers
SH -
Our client has the following setup:
* ADF application deployed on weblogic server
* ADF application secured using ADF security with users and roles expected to be present on weblogic server.
* Users and roles stored on Microsoft Active Directory and connected to weblogic server through security provider configuration
The client has the following requirement:
* Extend the ADF app to provide self service and admin screens to the users to be able to do security related operations like change password, reset password etc
Since all this data is mastered in Microsoft AD, I am wondering how do we go about it. What should I start looking into ?
Should I be ..
* looking at weblogic security APIs ?
* looking at independent java APIs that can talk to Microsoft AD ?
Before I invest time in any of these, I want to make sure I am heading in the right direction. Could you point me in the right direction please ?
thanks,
JaseerHi,
Have you already reviewed this document?
[How To Guide: SOS Self-Services|http://service.sap.com/~form/sapnet?_SHORTKEY=01100035870000707814&_SCENARIO=01100035870000000112&_OBJECT=011000358700003597252006E]
[SAP Support Portal: SAP Security Optimization Service: www.service.sap.com/sos |www.service.sap.com/sos]
Best regards,
Ruediger -
Security of Web Services, Agents and Sequantial Calling of Web Services
I want to ask about the secure invocation of web services and the role of agents.
Suppose that I have greet() web service:
public String greet() {
String S1=sayHello(); // A web service, actually its proxy
String S2=sayGoodMorning(); // A web service, actually its proxy
return S1+" "+S2;
It calls two other webservices and they return "HELLO" and "Good Morning". Also assume that I need to secure all my web services but I need these calls to work!
I put an agent in front of those two web services and require them to check a SAML token. I also attach an agent to greet() to authenticate the inbound and sign and add SAML token for outbound.
But I think these two calls fail because the SAML is not created on each call. (Is it?)
How can I make those two calls, secure each web service and at the same time keep the security code out of business code, in other words keep my web service security agnostic?
Thank you in advance.
Best Regards
FarbodAny Comments on this?
-
Add Previous Employement Information in Self-Service
Hi,
I have a requirement in which I need to Add previous employee information in Employee Self Service. The Employee could able to modify it. Can anyone help me with this. The version which I am using or R-12
Thanks
Nitin SinghHi Nitin
We are also migrating on R12.0.4
I tested employment history page to add in employee self service and it worked. The exact function details are as follows.
Name Irc Apl Qualification & Experience Page
Code IRC_APL_QUALIFY_DETS_PAGE
Description My Account Qualification & Experience Page
Type JSP
Maintenance Mode Support NONE
Context Dependence RESP
HTML Call OA.jsp?page=/oracle/apps/irc/candidateSelfService/webui/AplQualifyDetsPG&akRegionApplicationId=821&OASF=IRC_APL_QUALIFY_DETS_LINK
Secured N
Encrypt Parameters N
Host Name
Agent Name
Icon
Object Name
Parameters OAFunc=IRC_APL_QUALIFY_DETS_PAGE
Region Code
Region Application Name
Try with this function and see if you are still getting the error. If it works then you can personalize this page for your responsibility to show only previous employers. -
Urgent Help required on Manager Self Service HR AME Rules
Hi,
I am implementing R12 Manager Self Service and creating custom AME rules for routing approvals. Can anyone tell me the steps to create rule for:
1. Change Job in job KFF (What query? Which attribute?)
2. Change Job Title (ass_attribute2 under assignment DFF)
3. Change in Organization field
Also, I have created rule for Leave of Absence. But upon approval, employee's status still showing active for that duration. How to link it with absence approval? This is standalone HR with no Oracle Payroll.
This is very urgent so any help would be highly appreciated.
Thanks in advance,
Mayur.Can u please elaborate your leave of Absence requirement
-
Termination Date in Employee Self Service
Dear All,
In Employee Self Service Termination Date is defaulting as System Date when employee is initiating the termination. So employee is not able to edit the Date.
After approval it is storing directly in to the form.
In this case employee is not able to set the termination date i.e actual termination date.
How to make it as editable.
Regards,
JithinHi,
Sorry for the delay.
I am using the function 'HR_TERMINATION_MGR_SS' for the manager self-service and there is a choice to pick the termination date.
and i am using the 'HR_TERMINATION_SS' and it has the sysdate by default.
could you please give me the function name exactly of the one you are using.
the version we have is 12.0.4
Thanks a lot -
Hi,
In Fusion APplications, we dont find Forms based Applications...only Self Service Web Applications...i have read some where about this....
Forms ----> Jdeveloper
Reports ---> XML Publishser
what does it mean...Self Service...any meaning for that...Check the following thread, it may be helpful:
Self-Service and Forms
Re: self service and Forms
Maybe you are looking for
-
Recent items are missing when I do a four finger expose swipe or two finger tap on icon
Hi, I used to be able to do a four finger down swipe when in an app which would show any app windows open plus recent items underneath. I'm currently getting the windows showing but no recent items. This goes for any app. I haven't changed anything.
-
Problem with file system logging in Solaris7
Hi, Solaris7 by default provides filesystem logging option. I mount a filesystem with "-o logging" option and then crash the filesystem. Next time i am able to mount the same filesystem without having to do an fsck. But the same does not happen if i
-
Is there a way to get a list of hot keys / keyboard shortcuts
There are so many key commands use for technical stuff with Mac, that I would like to get a list of all of them. Does anyone know where to download a list of those shortcuts?
-
ADF-af:inputListOfValues not working properly when used in inside table
Hi All, i am using jdev version 11.1.1.5.0 . In my usecase i have create one eo based vo where in empname attribute i have add lov and drag this vo as adf table on jsff page. and i have create row on table and select empname from lov. lov working pro
-
Why Street prefix and suffix are not provided in ship to address?
Hi Experts, Anyone have any idea why SAP provided Street prefix and Suffix fields in "BBPADDRINTC (Edit Internal Address)" screen but not in Ship to address screen of shopping cart. Is there any OSS note which can include these fields into ship to ad