Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP security Batch Jobs identification

Go to solution
Former Member

‎2014 Jun 02 4:36 PM

0 Kudos
937

Hello ,

I have two clarifications regarding the Background Jobs

1. Could you help me to identify the list of Background jobs (Apart from PFCG_TIME_DEPENDENCY and RHAUTUPD_NEW) to be scheduled in the PRD system as the part of security activity ?

2. Is there a best practise to schedule this jobs in proper timing.

I see in forums this should be scheduled everynight. Do you recommend to schedule everycouple of hours?

- I find out the job PFCG_TIME_DEPENDENCY or RHAUTUPD_NEW should be run every midnight.

- And same for the job /VIRSA/ZVFATBAK job (FF log collector)

Any proper document explaining the best practise to schedule this two jobs?

Thanks in advance

Regards,

Ela

1 ACCEPTED SOLUTION

Go to solution
Former Member

‎2014 Jun 02 5:41 PM

0 Kudos
502

Hi,

PFCG_TIME_DEPENDENCY

This is best to run once a day mostly after 12.01 am as it removes the roles which are invalid for current date. As role assignment is on date basis there is no advantage of running it hourly.

/VIRSA/ZVFATBAK

This is for GRC 5.3, and this job is to collect FFID logs from backend to GRC repository, so if you have frequent FFID usage you can schedule it hourly or for every 30 min too, if you have enough bandwidth in your server to get the latest log report. or else you can have it scheduled for twice a day too, so it is purely based on your need.


Hope this helps.


BR,

Mangesh

5 REPLIES 5

Go to solution
Former Member

‎2014 Jun 02 5:41 PM

0 Kudos
503

Hi,

PFCG_TIME_DEPENDENCY

This is best to run once a day mostly after 12.01 am as it removes the roles which are invalid for current date. As role assignment is on date basis there is no advantage of running it hourly.

/VIRSA/ZVFATBAK

This is for GRC 5.3, and this job is to collect FFID logs from backend to GRC repository, so if you have frequent FFID usage you can schedule it hourly or for every 30 min too, if you have enough bandwidth in your server to get the latest log report. or else you can have it scheduled for twice a day too, so it is purely based on your need.


Hope this helps.


BR,

Mangesh

Go to solution
pmuschick
Participant

‎2014 Jun 03 9:28 AM

0 Kudos
502

It depends on your needs and the system load. If you have massive batch jobs in the night I would not recommend to run them at the same time. Just have a look at the system's performance over the time - if there is no bottleneck then there is no need to reschedule them. This may change in the future and is totally different on each system / customer. In general: I would recommend to run them AFTER midnight as usually you want to have the current state on roles (if you on 23:55 you may not have the "settings" of the next day.)

Another job may be interessenting only if you are using structural authorizations: RHPROFL0 This is only required if you are using structural authorizations. (See OOAC AUTSW ORGPD = 1-4, you would know if you are using this)

As far as I know additional jobs are not required unless you have the requirement from business. (E.g. after Go-Live of some new composite roles from QA, urgent changes in PROD and so on)

Go to solution
Former Member

‎2014 Jun 03 10:22 AM

0 Kudos
502

Thanks Mangesh and Peter

Go to solution
Former Member
In response to Former Member

‎2014 Jun 03 3:28 PM

0 Kudos
502

Hi Ela,

Please mark thread as answered if it so to close it.

BR,

Mangesh

Go to solution
kadert23
Newcomer

‎2024 May 20 10:57 AM - edited ‎2024 May 20 1:58 PM

0 Kudos
408

PSIRA verification is crucial for ensuring compliance in security services. How do you integrate PSIRA checks into your SAP security processes?