Dear SCN Member,
In order to fully benefit from what SCN has to offer, please register at:
Thank you,
The SCN team
Skip to end of metadata
Go to start of metadata
ALL USERS ARE INVITED TO CREATE CONTENT! Click here to submit content

Welcome to the central page for SAP Product Security and Identity Management . This is the SCN starting point for topics around SAP Product Security and SAP Identity Management as well as security services and partner information.


















Moderators: Kristian Lehment | Martina Kirschenmann | Christopher Leonard | Keith Zhang | Bernhard Hochreiter | Julius von dem Bussche | Matthias Kaempfer 

Space Editor: Filipe Santos

How to contribute: 

  • Click here to submit content

SCN Topic Spaces: Product Security | SAP IDM | SAP SSO | SAP GRC | SAP Cloud ID | SAP ETD | SAP Mobile Documents |

Staging Area 
(only accessible when logged in)

Quick Links



Page: Best Practices - Display Audit Roles Page: Documentation of SAP Identity Management APIs Page: Global Security Alliance (GSA) - Now IA4SP Page: GRC Webservices Page: How to remove old keys of developers DEVACCESS table Page: IdM: NWA Adding JDBC Data Source for IdM – manual Page: Issue with Custom Risks option in RAR Page: Mass population of a Business Role Page: OAuth 2.0 - Constrained Authorization and Single Sign-On for OData Services Page: OAuth 2.0 - Integrating access protected web services using the OAuth 2.0 Client Page: Recommended Interoperable WS Security Scenarios on AS ABAP Page: Rewriting WSDL for Metro 2.0 (Web Service Runtime) Page: SAP ABAP Security - FAQ Page: SAP ABAP Security - Troubleshooting Guides and Best Practices Page: SAP ABAP Security - Wiki Page: SAP Identity Management - Overview Page: SAPPress Single Sign On with SAP Page: Security and Identity Management Home Page: Security FAQ Page: Security Functionality Wishlist-Topics Page: Setting IdM remote dispatcher – manual for Oracle DB Page: Single Sign on for Web Services Page: Single Sign on for Web Services from .Net Page: Single Sign on using SAML with Apache Axis2 (Web Service Runtime) Page: Single Sign on using SAML with IBM DataPower (XML Appliance) Page: Single Sign on using SAML with Sun Metro 2.0 (Web Service Runtime) Page: Single Sign-On with SAML 2.0 Page: Single Sign-On with SPNego (NWAS Java) Page: Testing Mobile Leave Request Application Page: Upgrade Steps for Security - quick reference Page: User Mappings in the Authentication Framework of SAP NetWeaver Application Server (AS) Java


  1. All questions related to security in SAP products should be posted in the SDN security FORUM which can be found here:

    Questions posted in the WIKI area will not be answered.

  2. Guest

    Security with transaction SQ03

    should be about only letting users see and execute what user groups are assigned to them. Analyst can change infosets in client with change and maintain for S_QUERY but they should not be able to see and execute queries when they are not assigned to the user group. Out of site out of mind.

  3. Hi James,

    I recommend first opening a discussion thread in the security forum, and then creating a wiki based on the results - and not a comment to the main page.