Welcome! Guest
New User? Register | Login

Consulting: Secure Configuration of Application Server ABAP

By: rekha | 25 May 2011 5:47 am

SAP Consulting provides services that offer additional value to customers targeting the implemetation of security notes released by SAP in larger system environments:

- Tailored Security Recommendation and Planning Service:
This service allows customers to make an assessment on the applicability of certain security notes to their SAP infrastructures and yields an effort estimation

- Gateway and Message Server Security Service:
This service offers customers to setup ACLs for securing SAP gateway and message servers for their entire SAP infrastructure

- Password and Credential Protection Service:
In order to protect passwords from being bute-forced and to protect PSE storage, this service allows customers to make a mass revision of their authorization implementation in all systems

- ICF Secure Configuration Service:
SAP recommends to turn off unused services from the Internet Communication Framework. This service enables customers to quickly create and distribute appropriate "Allowed Services" lists within their SAP infrastructure

- SSL Configuration Service:
SAP recommends to replace web access with plain HTTP by SSL. This service assists customers in setting up required keys and certificates for their servers and to configure and test SSL for their web based applications

- SAPGUI for Windows Security Service:
As SAP application servers may perform security relevant access on client systems, SAP recommends to setup SAPGUI security rules. This service helps customers in establishing appropriate rule sets for their applications

- Baseline Security Configuration Bundle Service:
This is a comprehensive bundling of all the services noted above, excluding the tailorized recommendation and planning service

Comments

No Comments Posted for this Article.

Leave a comment

You must be Loged in to post a comment.

Tutorials
Forum
Books
Interview Questions

Authorisation Concepts
SAP BASIS (BC) Security Components Page 1 of 5 1.0 Introduction SAP has done nothing less than change the entire systems landscape for enterprises. The benefits it can bring have led to...
Using the digital signature in the R/3 System
You want to use the digital signature in ABAP applications.To use a digital signature in ABAP applications, you must install a security product that is certified by SAP for the interface of Secure...
What is the difference between Basis and the Application Server? in sap
I have one question about the SAP R/3 architecture: What distinguishes BASIS from the Application Server? What is the role of Basis doing vs. the role of an Application Server? How are these two...
How Pacific Coast Feather uses SAP Ecommerce for its B2B customers
Hear how Pacific Coast Feather built its B2B and B2C sites using SAP CRM 2005, including SAP E-Commerce components such as the Internet Sales Application (ISA), TREX, Internet Pricing Configurator...
Identity Management
What is Identity Management? Identity Management at SAP means the management of user accounts including role or authorization assignments. What is Central User Administration, and what can I...
Run or Display ABAP Report over the web
I need to run or display ABAP/4 report over the web? How is that possible? You may not be able to display a report directly on net. However, you need to create BSPs (business server pages) on...
MSSQL: internal database users, permissions and security
This note describes the users and logins (os and database) needed for SAP installations on MSSQL. General 1. Everywhere in this note sid means SAPSID in lower case and SID - in upper case. 2...
Functions of the transport profile parameter BATCHHOST
Symptom The transport tool function is partly implemented in the kernel (tp, R3trans) and partly in ABAP (Data Dictionary activation, versioning, execution of after-import methods, and so on). ...
Data security products: Application in the antivirus area
Queries: Prerequisites when using antivirus solutions in SAP applications Using the SAP virus scan interface (VSI) Which components are required for use The VSI allows you...
SAP WEB AS Application Server Basics
SAP Web AS is a flexible and configurable component within SAP NetWeaver that runs applications. "SAP Web AS" acts as the foundation for netweaver technologies. The SAP WEBAS provides...
Single Signon
What is the difference between authentication and Single Sign-On? In computer security, authentication is the process by which a computer, computer program, or another user attempts to confirm...
cProjects 4.5 - FAQ note
You require information about cProjects Release 4.50. Part 1: General information SAP Project and Portfolio Management in context: cProjects suite is a Web-based, flexible...
RFC load distribution
When you are using RFC load distribution via the SAP logon mechanism, no load distribution occurs. This causes the potential capacity overload of individual application servers or logon groups. The...
What is ASAP Methodology?
What is ASAP Methodology ASAP: Accelerated Systems Application and Products in Data Processing All implementation projects have the the following phases: Scoping - What is to be implemented i.e...

How does a server upgrade affect the default schema (and my application data)?
Your application data shall safely survive the upgrade of the server software, like with ABAP stack over the years.
Error while configuring application
Hi experts, I am trying to implement WDA tutorial 5 : Application configuration. When I try to create an application configuration in SE80, a new browser window opens but I get the following...
ABAP Schema !!
Hello Its well known that the in any application server ( ABAP + JAVA ), that it as two schmeas i.e ABAP Schema and JAVA Schema. WHERE exactly these Schemas located and WHAT exactly these...
Is netweaver alone is enough to learn abap
HI, Im new to sap.. i have electrical bacherlors... im outside of india for studies... can i able to learn abap, by installing trail verison of netweaver server application abap.. Thanks in...
How to find out where the SLD is configured in our landscape and how to check the configured system in the SLD
JAVA : In your visual administrator go to the service SLD data supplier and there check to which SLD server its triggering its data. ABAP: Go to tcode SLDAPICUST and there you can see which SLD your...
What is ALE?
Application Linking and Enabling - Generally ABAPers work on it.
How to configure load balancer for GUI and portal
I need to set parameter for my BI system to improve the performance. The performance of BI server is very slow.It has 5 core 16 Gb Ram. Can anyone suggest me the right parameter size for this...
Send External Mail in SAP.
Hi, i want to send mail to an external adresss(i.e abcd@...) form my abap code. i searched it on internet, ihave found lots of articles, there are several ways to achieve this. but which is the...
Who gets more salary ABAP Programmer, Functional consultants or BASIS - Any idea?
Hello friends, I would like to know who gets highest salary among the following : ABAP Programmer, Functional consultants or BASIS Consultants. Whats the position of BASIS Consultants among...
PI 7.0 Java stack config of the stand-alone server to new cluster system
we have a PI installation in stand alone server (SAP with abap + java and Oracle in the same server) The system number of the ABAP stack is 00, and we are conecting to the Java stack to the for...
Dumps in PRD Server
Dear Friends, There is no. of dumps in my Production server. "CALL_FUNCTION_NOT_FOUND" Function module "CRM_MKTPL_OL_LOAD_OBJECTS" not found. What happened? The function...
SAP SECURITY HELP -FROM TECHNICAL TO SAP SECURITY
Hi, My name is Israel, i am working on ABAP Techanical side for the past years, but i wanted to shift from ABAP to SAP SECURITY, please suggest me whether it is suggestbale for me. ...
What is Current Package Level of Basis,Application,Abap,Hr in ECC6.
what is current package level of basis ,application,abap.hr in ecc6.
Prevention of multiple SAPGUI logons
You want to prevent the multiple dialog logon (using SAPGUI) by users on your SAP system: * A user should always only be able to logon to the SAP system using SAPGUI (WinGUI/JavaGUI) exactly one...
Reporting on Infotypes limited by security
I have set up security so that you can only access certain subtypes in an infotype. When I view someones record from PA20 it only shows me the subtypes I have access to from security, but in ABAP...

SAP Web Application Server Architecture
SAP Web Application Server Architecture Introduction This document aims to describe how the integration between SAP J2EE Engine and SAP Web Application Server (SAP Web AS) is designed. There are...
Technical Consultant Training R/3 Administration Week 2
Technical Consultant Training R/3 Administration Week 2 Contents Section: Software Logistics ......................................................1 Introduction...
Starter tips trickes
Starter tips trickes Contents 1 SAP R/3.................................................... 2 1.1 Tables................................................. 2 1.2...
BC System Services
Overview of SAP Application Servers Use You can display a list of application servers that have registered themselves with the SAP message server by executing Transaction SM51, or by choosing...
TADM10_1 SAP Web AS Implementation & Operation
TADM10_1 SAP Web AS Implementation & Operation Course Overview The course TADM10 is the foundation for different following consultant education tracks. On the one hand you can continue your...
The SAP R/3 Handbook, Second Edition
Chapter 1: What Is SAP R/3?...........................................................................................................................4 ...
SAP Enhancement Package Installation Guide
For: ABAP+Java Windows Oracle Target Audience System administrators Technology consultant Chapter 1 Introduction . . . . . . . . . . . . . . . . . . . . . . . 9 1.1 Quick Access...
TABC41 ABAP Development Workbench Basics Certification Material for SAP ABAP
TABC41 ABAP Development Workbench Basics - Services.........................................................................................................................................2-9 ...
TABC41 ABAP Development Workbench Basics 1/2
TABC41 ABAP Development Workbench Basics 1/2 TABC41 ABAP Development Workbench Basics 1/2 ..................................................0-1 Copyright...
Upgrade to SAP R/3 Enterprise: Windows
1 Introduction This section of the documentation contains general information on: • Naming conventions This section explains the terminology and abbreviations used in this documentation. ...
Technical Consultant Training ORACLE Week 4
Technical Consultant Training ORACLE Week 4 Contents Course Overview ....................................................................1 Target Group...
SAP NetWeaver Â�Overview
Course Overview The course SAPNW introduces the possible uses of SAP NetWeaver and provides an overview of the technical infrastructure it represents. This infrastructure includes the SAP...
TADM10_2 SAP NetWeaver AS Implementation & Operation I
TADM10_2 SAP NetWeaver AS Implementation & Operation I Technology Components for Browser-Based User Dialogs Unit Overview In this unit, you learn about a number of central technology...
TADM12_1 SAP NetWeaver AS Implementation & Operation
TADM12_1 SAP NetWeaver AS Implementation & Operation SAP ERP Application Architecture Unit Overview This unit describes the application SAP ERP and the architecture of SAP ERP Central...
Enterprise SOA Development Handbook
1 Introduction What is enterprise SOA? In general, service oriented architectures (SOA) is an architectural pattern which requires all exposed functionality to be published as services in a...

Why abap/4 is 4th generation language?
ABAP is the fourth generation languages because of all applications are write on the application server and execute on the server only. All reports are done by using the advanced business language.
How will you create a file on application server
Open dataset for output. ABAP/4 statement for opening a file on application server for reading? Open dataset for input.
In an ABAP/4 program how do you access data that exists on a presentation server v/s on an application server?
For presentation server use UPLOAD or WS_UPLOAD function modules. For application server use OPEN DATASET, READ DATASET and CLOSE DATASET commands.
In an ABAP/4 program how do you access data that exists on a presentation server v/s on an application server?
For presentation server use UPLOAD or WS_UPLOAD function modules. For application server use OPEN DATASET, READ DATASET and CLOSE DATASET commands.
Very important SAP BASIS Interview Questions
I am unable to give the answer for following questions. If anybody knows the answer, please update the answers and replay to all. It is really very help to all sap basis consultant. 1.What is the...
BASIS Interview Questions part1
1. How to define Logon groups? And what is Logon load balancing? 2. For an ABAP only system, do we have to SSL? 3. What is the procedure involved in doing a system-copy? 4. How to handle...
BASIS Interview Questions (part4)
What are Homogenous system copy and Heterogeneous system copy and how you will do that? How to import the OSS notes? What is OCS and How to apply OCS Patches ? What is Transport domain...
What are presentation and application servers in SAP?
Presentation server is actually a program named Sapgui.exe. It is usually installed On a user��s workstation. Application server is a set of executables that collectively interpret the ABAP/4...
In an ABAP/4 program how do you access data that exists on a presentation server v/s on an application
For presentation server use UPLOAD or WS_UPLOAD function modules. For application server use OPEN DATASET, READ DATASET and CLOSE DATASET commands
BASIS INTERVIEW QUESTION
1.What is the difference between System Trace, Developer Trace and System Log? System Trace: If you want to record the internal SAP system activities, use the function SAP System Trace. Recording...
What is an ABAP?
ABAP (Advanced Business Application Programming) is a high level programming language created by the German software company SAP. It is currently positioned as the language for programming SAP's Web...
what is SAP NW AS ABAP
SAP NW AS ABAP is SAP Netweaver application server ABAP, a part of the SAP NW AS. SAP NW AS ABAP is used for progarmming applications in ABAP. SAP NW AS ABAP provides an ABAP runtime environment.
how to build console tree to start abap server
Hi, In my system ABAP server installed but today Morning i opened to start ABAP server to start abap but under console root only 'sapsystems' there.Actually under application server name and tree...
SAP XI Certification Questions Set 3
1. Which of the following belong the Process Integration stack of SAP Netweaver a) Integration broker b) Business Process Management c) Multi channel Access d) Collaboration 2. Loosely coupled...
BASIS Interview Questions part2
BASIS Interview Questions What are Homogenous system copy and Heterogeneous system copy and how you will do that? How to import the OSS notes? What is OCS and How to...