Registration

Dear SAP Community Member,
In order to fully benefit from what the SAP Community has to offer, please register at:
http://go.sap.com/community.html
Thank you,
The SAP Community team.
Skip to end of metadata
Go to start of metadata
ALL USERS ARE INVITED TO CREATE CONTENT! Click here to submit content

Welcome to the central page for SAP Product Security and Identity Management . This is the SCN starting point for topics around SAP Product Security and SAP Identity Management as well as security services and partner information.

 


       

           

           

     

           

     

 

           

     


 

     

     

 

 

 

 

Moderators: Kristian Lehment | Martina Kirschenmann | Christopher Leonard | Keith Zhang | Bernhard Hochreiter | Julius von dem Bussche | Matthias Kaempfer 

Space Editor: Filipe Santos

How to contribute: 

  • Click here to submit content

SCN Topic Spaces: Product Security | SAP IDM | SAP SSO | SAP GRC | SAP Cloud ID | SAP ETD | SAP Mobile Documents |
 

Staging Area 
(only accessible when logged in)

Quick Links

 

 

Page: Acknowledgments to Security Researchers Page: Acknowledgments to Security Researchers - Previous Months (2011 to 2013) Page: Acknowledgments to Security Researchers - Previous Months (2014 on wards) Page: Best Practices - Display Audit Roles Page: Disclosure Guidelines for SAP Security Advisories Page: Documentation of SAP Identity Management APIs Page: Enterprise Security with SAP Single Sign-On Page: Global Security Alliance (GSA) - Now IA4SP Page: GRC Provisioning Framework in SAP NetWeaver Identity Management Page: GRC Webservices Page: How-To Guides for SAP NetWeaver CE,MDM,Mobile,PI 7.1 - Security and Identity Management Page: How to remove old keys of developers DEVACCESS table Page: How-To Video Guides for More RFC Security with Unified Connectivity (UCON) Page: IdM: NWA Adding JDBC Data Source for IdM – manual Page: Issue with Custom Risks option in RAR Page: Mass population of a Business Role Page: Mobile SSO with SAP Single Sign-On Page: OAuth 2.0 - Constrained Authorization and Single Sign-On for OData Services Page: OAuth 2.0 - Integrating access protected web services using the OAuth 2.0 Client Page: Read Access Logging (RAL) Page: Recommended Interoperable WS Security Scenarios on AS ABAP Page: Rewriting WSDL for Metro 2.0 (Web Service Runtime) Page: SAP ABAP Security - FAQ Page: SAP ABAP Security - Troubleshooting Guides and Best Practices Page: SAP ABAP Security - Wiki Page: SAP Enterprise Threat Detection - Security Monitoring - Data Breach Protection Page: SAP HANA Cloud Platform Identity Authentication Service (formerly called SAP Cloud Identity) Page: SAP Identity Management 7.2 Documentation Page: SAP Identity Management 8.0 Documentation Page: SAP Identity Management Documentation Page: SAP Identity Management Download Page: SAP Identity Management - Overview Page: SAP Identity Management Product Overview Page: SAP Identity Management Training Page: SAP NetWeaver Application Server, Add-On for Code Vulnerability Analysis Page: SAP NetWeaver Identity Management 7.1 Documentation Page: SAP NetWeaver Identity Management FAQ Page: SAP NetWeaver Identity Management Identity Center Page: SAP NetWeaver Security: Authentication and Single Sign-On Page: SAP NetWeaver Security: Authorization and Role Management Page: SAP NetWeaver Security: Secure Communication Page: SAP NetWeaver Security: Secure Development Page: SAP NetWeaver Security: Secure Operations Page: SAP NetWeaver Security: Security Certifications Page: SAPPress Single Sign On with SAP Page: SAP Security Products and Solutions: Training Page: SAP Security Products and Solutions Newsletter Page: SAP Single Sign-On Product Overview Page: Security and Identity Management Home Page: Security FAQ Page: Security Functionality Wishlist-Topics Page: Setting IdM remote dispatcher – manual for Oracle DB Page: Single Sign on for Web Services Page: Single Sign on for Web Services from .Net Page: Single Sign-On from SAP NetWeaver Portal to Sharepoint Page: Single Sign on using SAML with Apache Axis2 (Web Service Runtime) Page: Single Sign on using SAML with IBM DataPower (XML Appliance) Page: Single Sign on using SAML with Sun Metro 2.0 (Web Service Runtime) Page: Single Sign-On with Certificates Page: Single Sign-On with Kerberos Page: Single Sign-On with Kerberos: Recommendations and Troubleshooting Page: Single Sign-On with SAML 2.0 Page: Single Sign-On with SPNego (NWAS Java) Page: Some hints for a smooth transition reg. SU25|upgrade to >=7.31 Page: Take the SAP Fiori Experience to a New Level with SAP Single Sign-On Page: Testing Mobile Leave Request Application Page: The Official SAP Global Security Space Page: The Official SAP Product Security Response Space Page: Trial Edition: SAP NetWeaver Application Server, add-on for code vulnerability analysis Page: Unified Connectivity (UCON) Page: Upgrade Steps for Security - quick reference Page: User Mappings in the Authentication Framework of SAP NetWeaver Application Server (AS) Java

3 Comments

  1. All questions related to security in SAP products should be posted in the SDN security FORUM which can be found here: https://www.sdn.sap.com/irj/sdn/forum?forumID=208

    Questions posted in the WIKI area will not be answered.

  2. Guest

    Security with transaction SQ03

    should be about only letting users see and execute what user groups are assigned to them. Analyst can change infosets in client with change and maintain for S_QUERY but they should not be able to see and execute queries when they are not assigned to the user group. Out of site out of mind.

  3. Hi James,

    I recommend first opening a discussion thread in the security forum, and then creating a wiki based on the results - and not a comment to the main page.

    Cheers,

    Julius