About Colleen

Colleen

How you can leverage new functionality to improve your security role build in SAP S/4HANA. Avoid CHANGED. MANUAL by Exception. MAINTAINED is OK. Strive for STANDARD. For as long as I’ve been building application security roles via transact...

Colleen

One of the common questions I receive from customers and partners is “how can you deliver a display only version for a Manage App”? There are more than 500 of these apps delivered out-of-the-box with SAP S/4HANA, providing an easy way to filter and a...

Colleen

This blog is a continuation of SAP Fiori for SAP S/4HANA - Granting Project Users SAP Fiori Launchpad Access. The previous blog was getting quite large. As I wrote, the lessons of projects’ past came back to me. I thought I’d share the rest in this ...

Colleen

If you are not familiar with managing roles and authorizations in SAP S/4HANA then you might like to have a look at an excellent blog series by jocelyn.dart before reading this one. A great one to start with is SAP Fiori for SAP S/4HANA – Adding Cust...

Colleen

One of the first challenges the security administration team faces when embarking on their SAP S/4HANA implementation is how to provide the project team members with access to SAP Fiori Launchpad. A “chicken and egg” situation arises when pr...

Colleen

limit the authorisations in the backend.

Colleen

HI Vincent I haven't thought through to level of detail for naming convention but I understand your point. I'd be included to keep the Id simple (e.g. APP Id + Activity level (Create, Read, Update, Delete - simply) + incremental). Then use the desc...

Colleen

Employee ID and User Id don't need to match. The HR employee record needs to contain infotype 0105 subtype 001 relationship which captures the User Id. It's been a while since I've been on the tools (someone else jump in). .. The connector configurat...

Colleen

Hi DavidSAP Note 2253549 - The SAP Security Baseline Template provides baseline configuration recommendations for security settings including management of privileged/sensitive/powerful/super user accounts.From a monitoring point of view - i.e. valid...

Colleen

okay - it makes sense to have 2 different catalogs because you need to give out different appsTo give the authorisations, you need to add the catalog to the role menu in PFCG transaction. When you add it, tick to include applications and it will impo...

User Statistics

User Activity

Getting back to Standard Proposals with SU24 Authorisation Variants

Converting a SAP Fiori “Manage” app to a Display Only using Adapt UI

SAP Fiori for SAP S/4HANA - Granting Project Users SAP Fiori Launchpad Access - Extras

SAP Security for S/4HANA – How Adding Business Catalogs to the Role Menu automates authorization maintenance

SAP Fiori for SAP S/4HANA - Granting Project Users SAP Fiori Launchpad Access

Re: Converting a SAP Fiori “Manage” app to a Display Only using Adapt UI

Re: Getting back to Standard Proposals with SU24 Authorisation Variants

Re: GRACUSER Table update through custom program

Re: Efficient and effective Internal Control Structure for Emergency Access IDs that are not FF IDs

Re: How to assign catalog to company code in fiori s4 hana