all InfoSec news
How to Securely Introduce Explicit AUTHORITY-CHECKS into Custom RFC-Enabled Function Modules
Security Boulevard securityboulevard.com
How to Securely Introduce Explicit AUTHORITY-CHECKS into Custom RFC-Enabled Function Modules
Tue, 06/20/2023 - 13:39
Compliance Aspects
Every SAP application provides business-related authorization objects that clearly define specific activities for individual business entities. They are designed to easily fulfill and monitor audit requirements like traceability of assigned authorizations and segregation of duties.
S_RFC authorizations are not related to a specific business entity or activity. They describe the access permission to a technical object (a function module or a function …
application audit authority authorization business compliance entities explicit function modules monitor requirements rfc sap traceability