SAP Security for Audit Seminar

SAP Security for Audit Seminar

-

English
21 Pages
Read
Download
Downloading requires you to have access to the YouScribe library
Learn all about the services we offer

Description

IRIS Authorizations/ Security User Administrationn User Maintenance - defining a user has many components including the following:n Basic User Datan Defaultsn Parametersn User Authorizationsn Primary Transaction – SU01n Central User AdministrationBasic User Datan Namen Initial Passwordn Validity period of a user’s accountn User Groupn User TypeTypes of R/3 Internal Usersn Dialogn Batch Data Communication - BDCn Backgroundn CPICUser Defaultsn Logon languagen Default printer (local or network)n Date and decimal formatsn Time ZoneParametersUsed to determine the default value for a field.• Parameter Id• Value• DescriptionStandard Parameter AssignmentsKME Z_UT FI Account Assignment ModelKPL UT Chart of AccountsMOL 10 Personnel GroupingPNI US Country KeyUGR 10 HR User GroupVKO UT Sales OrganizationBUK UT Company CodeCAC UT Controlling AreaEKO UT Purchasing OrganizationFIK UT FM AreaFWS USD Curreny UnitFZ2 Z_UT G/L Account Line LayoutFZ5 Z001 Parking Document Line LayoutFBZ Z01 Posting Document Line LayoutRules for Passwordsn Minimum 6 charactersn Not to begin with ‘?’ or ‘!’n Not to begin with any sequence of 3 characters contained in the user namen Not to begin with 3 identical charactersn Can not use ‘PASS’ or ‘SAP’n USR40 Password Lockout Listn NOT Case-sensitiven Can change only once a dayn Can not change to 5 previous passwordsUSR40 – PW Lockout ...

Subjects

Informations

Published by
Reads 26
Language English
Report a problem
IRIS Authorizations/ Security 
User Administration
n
n n
User Maintenance - defining a user has many components including the following: n Basic User Data n Defaults n Parameters n User Authorizations
Primary Transaction – SU01 Central User Administration
Basic User Data
n
n
n
n
n
Name
Initial Password
Validity period of a user’s account
User Group
User Type
Types of R/3 Internal Users
n
n
nn
Dialog
Batch Data Communication -
Background
CPIC
BDC
User Defaults
n
n
n
n
Logon language
Default printer (local or network)
Date and decimal formats
Time Zone
Parameters
Used to determine the default value for a field.
Parameter Id
Value
Description
Standard Parameter Assignments
KME KPL MOL PNI UGR VKO BUK CAC EKO FIK FWS FZ2 FZ5 FBZ
_ Z UT UT 10 US 10 UT UT UT UT UT USD Z UT _ Z001 Z01
FI Account Assignment Model Chart of Accounts Personnel Grouping Country Key HR User Group Sales Organization Company Code Controlling Area Purchasing Organization FM Area Curreny Unit G/L Account Line Layout Parking Document Line Layout Posting Document Line Layout
Rules for Passwords
n n n
n n n n n n
Minimum 6 characters Not to begin with ‘?’ or ‘!’ Not to begin with any sequence of 3 characters contained in the user name Not to begin with 3 identical characters Can not use ‘PASS’ or ‘SAP’ USR40 Password Lockout List NOT Case- sensitive Can change only once a day Can not change to 5 previous passwords
USR40 –
PW Lockout List
*IRIS* *VOL* FIESTA* MOC* ORANGE* ROCKYTOP SMOKEY* TENN* UT*
User Authorizations
n
n
Granted via Activity Groups/Roles and/or Profiles
Assigned to user master records to provide access to R/3 functionality
Activity Groups
n
n
n
Created via the Profile Generator (PFCG)
Serve as containers for user menus and authorization objects and values
Used to generate authorization profiles