SAP FIORI: Tools for error analysis

Tools such as the SUIM or authorization traces in the SAP GUI are often not helpful for Fiori applications when it comes to error analysis. In this article, you will learn which tools and methods you can use instead to analyze and resolve authorization problems in Fiori apps. SAP Fiori applications run in the browserContinue reading “SAP FIORI: Tools for error analysis”

Authorizing Fiori apps – a practical guide

In our last blog post on the topic of Fiori and its individual elements, you received some important initial information. In this article, we will show you a concrete example of how to implement Fiori authorizations in practice. Step 1: Roll construction in the PFCG Let’s start in the SAP GUI with transaction PFCG, whereContinue reading “Authorizing Fiori apps – a practical guide”

Spaces, Pages, Cataloges? What is what in SAP Fiori?

Spaces, Pages, Cataloges? What is what in SAP Fiori? What used to be groups are now called Spaces. Or are they Pages? And what exactly are Sections? Today we explain what is behind the new Fiori content objects. The Fiori Launchpad consists of pinned areas that you can design individually. But what fills what? WhereContinue reading “Spaces, Pages, Cataloges? What is what in SAP Fiori?”

Firefighter authorizations

Firefighter user help to solve problems quickly and are used for infrequent or irregular activities. With firefighters, you can keep user authorizations lean because they can fall back on these emergency users in case of doubt. However, the use of firefighters in SAP systems is a critical issue for system security and compliance. That isContinue reading “Firefighter authorizations”

Identity Services – the gateway to the SAP cloud world

Identity Directory Service An SAP directory service in which all user and group assignments are stored (analogous to e.g.AD/AAD) Identity Provisioning Service A service that provisions group assignments in the backend system, including attribute mappings and transformations Identity Authentication Service The IdP from SAP. This can be used to implement MFA and SSO scenarios orContinue reading “Identity Services – the gateway to the SAP cloud world”

What are critical authorizations?

Critical authorizations and segregation of duties conflicts (SoD conflicts) are part of everyday life for authorizers. However, this does not make dealing with them any less challenging. Especially because different authorizations can be considered critical in every company. We explain how you can identify critical authorizations and how you can minimize the risk.

Transaction types in SAP

In SAP, there are a variety of transaction types that allow users to perform business processes. However, each transaction type has its own risks in terms of data protection and system security.