Topic: SAP Tutorial
Download (71) times
Last Download at Monday 07th of May 2012 01:17:40 PM
Secure Configuration SAP Netweaver Application Server ABAP
SAP solutions make customer businesses best-run businesses by providing software solutions to optimize and innovate core businesses processes. The SAP technology platform with ABAP is used to store and process business-critical data (e.g. financial data, human resources data, and customer relationship data) . Therefore, it is crucial that customers secure the SAP technology platform. SAP systems must fulfill compliance regulations, such as the Sarbanes-Oxley Act (SOX). More generally, conformance to data protection and privacy laws as well as compliance to industry-specific regulations is required. Since SAP systems run business-critical processes, protecting them from attacks is a vital need.
To protect ABAP systems against unauthorized access and manipulation, security configuration must be applied on different levels (e.g. landscape architecture, operating system, database, SAP Basis, SAP applications, SAP authorizations). SAP and third parties provide comprehensive documentation on how ABAP systems can be secured, e.g. SAP Security Guides, SAP Security Notes, SAP Community Network, and materials in many books. Please refer to the Appendix of this document for further references.
The purpose of this document is to provide recommendations for the most important security configuration activities that should be performed for ABAP systems on an SAP Basis level. It does not cover topics that are mainly related to corporate policies or business processes, which differ largely from customer to customer. Examples of these exclusions are system administration and operation (e.g. operating system security, database security) , SAP authorization concepts (e.g. segregation of duties on business and system operations levels), secure development, logging, and tracing.
The general scope of this document is a set of security measures for ABAP systems against unauthorized access within the corporate network. For Internet scenarios, additional security measures must be considered and implemented. More details can be found in the documentation provided by SAP. The topics listed in the following are covered in this document.
Source: www.sdn.sap.com
Related PDF Files
Comments for Secure Configuration SAP Netweaver Application Server ABAP