About Frank_Buchholz

Frank_Buchholz · 10-07-2022

Introduction A security policy is a collection of security policy attributes and their values. This definition replaces the definition of behavior with profile parameters: once a security policy is assigned to a user master record, this determines th...

Frank_Buchholz · 07-22-2022

Risk zone ! The password hash algorithm used by ABAP based systems had evolved over time. Older hash algorithms are seen as weak nowadays and you should get rid of any such weak password hashes. References: Blog SAP password hashes security from...

Frank_Buchholz · 01-19-2022

The Security Optimization Service (SOS) is designed to check the security of your SAP system (see Introduction to Security Optimization Service (SOS) – Security health Check report). The SOS report shows two tables with results and findings. In the...

Frank_Buchholz · 02-14-2017

You can increase the security of your system landscape with the Trusted RFC concept (see Trusted Systems: Maintain Trust Relationships Between SAP Systems). This blog describes how Trusted RFC can be configured securely. Some well-known impacts of i...

Frank_Buchholz · 02-18-2015

You can use SAP NW Identity Management to develop a central password self-service applications which can be used by all users to set their password in various backend systems. Well, I agree that implementing Single Sign-On is always better than deali...

Frank_Buchholz

>Hi @Frank_Buchholz, due to the latest SAP Community update,>the layout of your blog post looks horrible now (huge blank spaces),>if you don't mind could you fix it please?@Sandra_Rossi Ho Sandra,I've no idea what I can do about this ugly change: I c...

Frank_Buchholz · 12-13-2023

Hi Diego, yes, I'll talk about this note in the monthly Security Notes Webinar (13.12.2023 ASUG / 14.12.2023 Enterprise Support and DSAG) and will tell something like this: If you just use BTP services (as in SAAS scenarios) but not develop own app...

Frank_Buchholz · 12-22-2022

Today I posted a fix on GitHub about the extra green icons in the PWDSALTEDHASH column that are showing up in some cases for the USH02 table. The problem is even visible in the screenshot above, where you see three icons for the entries with code ver...

Frank_Buchholz · 10-11-2022

Thank you for your comment. I guess it's a program error: WHEN 'snc_per_logon.sncMode' OR 'snc_base_info.mode'. usr_tabl_alv-snc_mode = usr_info-value. tmp_field_col-fieldname = 'SNC_MODE'. tmp_field_col-color-in...

Frank_Buchholz · 10-11-2022

Let's check some code:- The report R_JR_BTCJOBS_GENERATOR belongs to package "Technical Job Repository". The report generates standard jobs. I could imagine that this includes a RAL job.- The Security Audit Log message BU0 "RAL configuration access: ...

User Statistics

User Activity

Show overview about security policies (SECPOL)

Report ZCLEANUP_PASSWORD_HASH_VALUESX - Remove weak password hash values

Show the results of the Security Optimization Service

Secure Trusted RFC in GRC Access Control EAM and other Applications

How to validate passwords using a Regex in SAP NW Identity Management

Re: Analysis and Recommended Settings of the Security Audit Log (SM19 / RSAU_CONFIG, SM20 / RSAU_REA

Re: Unveiling Critical Security Updates: SAP BTP Security Note 3411067

Re: Report ZCLEANUP_PASSWORD_HASH_VALUESX - Remove weak password hash values

Re: Report ZSM04000_SNC / ZRSUSR000_620 - Show SNC status of current user sessions

Re: Analysis and Recommended Settings of the Security Audit Log (SM19 / RSAU_CONFIG, SM20 / RSAU_READ_LOG)