Security and Authorisation - SAP R/3
Course content
Course Length
4 weekends
Goals
In this course participants learn how to implement and maintain Authorisations and Security module.
Content
SAP Authorisation concepts
- Elements of the SAP authorization concept
- User master record
- Using the Profile Generator (roles, composite roles, reference roles, derived roles, Customizing roles)
- Profile Generator: installations and upgrades
- Access control and user administration (password rules, special users, user and authorization administration)
- Analysis and monitoring functions
- Special authorization components, use of area menus
- Transport of authorization components
- Central User Administration (CUA)
Secure SAP system management
- Identify and protect sensitive data and mechanisms in live SAP
- security checks and configure important security monitoring mechanisms
- Configure standard SAP role maintenance tools to produce secure company-specific roles and authorization profiles
- Implement and use the SAP Security Parameters
- Secure change management mechanisms in production system landscapes and protect system administration tools from misuse
Security in SAP system environments
- Fundamentals and objectives of system security
- Authentication and encryption
- Network basics
- Communication, TCP/IP, ports
- Routing, firewalls, proxies, SAProuter
- Security in the SAP system
- Authentication and passwords
- Auditing as intrusion detection
- RFCs, trusted RFCs, RFC destinations
- Encryption, SNC Cryptography basics, PKI, TCS SAP Web AS, SAP ITS, and SAP Enterprise Portal
- Encryption, SSL, SNC
- Authentication, certificates, Single Sign-On
- Logon tickets, X.509, SSL, PAS
- Collaboration and network security
- DMZ, intrusion detection
- Application security: digital signatures