Question:
Hi Guys,
Anyone have idea about how RBE can be used to identify SAP security loop holes on SAP upgrade or how the tool can be used to convert profiles to roles on upgrade from 31I to Enterprise/46C systems.
Thanks in Advance
DAK
Answer:
I dont know whether i am giving u the correct report name or not. RSCMAUTH report actually take care of security loop holes which are otherwise kept open by Abapers developed programs. It modify a table which allows you to auth check for non sap programs
iqbal
Answer:
RBE is a security freindly version of ST03, it will not find loop holes and is only good for upgrades if your roles are correct it the first place. THe RSCSAUTH report onluy allows you to add or change authorization gorups on executable reports without a repair. The auth group s checked on the report only if it is notblank and is checked on ANY equivalent Submit command.
Answer:
Thanks Iqbal and John for your inputs...
But must RBE (reports) work if we are converting Profiles to Roles..
We have 31I system with lots of Profiles and Activity groups and have mixed strategy.. mean The profiles and Actgrp are created based on transactions,authorization objects and business process etc...
So, how useful is the tool for us??
if possible could any one of you explain with an example..
I would really apreaciate it...
Thanks
DAK
Answer:
RBE is not required it will tell you what you already know. It is usefule froma grass roots implementation when you know nothing. You already have used and tested profiles with "correct" org level values.
SAP has a utility in the higher version to "convert" your profiles to roles.
The RBE is a tcode use and value reporting tool, it will not tell you if your profiles or roles are a mess.
Answer:
Thanks for the valuable information John..We will not use RBE then...
DAK