Security

Security: Users

User login

Shows number of users that has initial password or they have old password. Old password is considered by default 180 days or more, but this parameter may be changed.

User login details

List of events related to user login and SAP* security risk. Double-click on the event to get more information.

SAP* Security Risk

True/false indicator to warn if there is a security related risk on system associated with the SAP* user backdoor logon. Two conditions must be met - parameter preventing SAP* from logging in must be turned off and SAP* user have to be deleted from table 't000'.

User authorizations

Shows number of users that have assigned role SAP_ALL, S_BCON (t-code DB02 access for executing SQL queries) and S_DEVELOP (developer accesses). Users with SAP_ALL are not counted towards S_DBCON and S_DEVELOP.

User authorization details

List of users with assigned potentially dangerous authorizations roles, double-click on the row to get more information.

Note: Widgets "User authorizations" and "User authorization details" are only reported on production system types by default to prevent unnecessary reporting from development or quality systems. This behavior can be changed in collector parameters and can be enabled for all systems.

Security: Connections

RFC fails and anomalies

Shows total number of anomalies, along with the counts of inbound and outbound failed RFC calls.

Expiring SSL certificates

Total count of SSL certificates that expired or are in expiration period (expire in max. 30 days and have <10% of lifetime left).

RFC connections with dialog users

Total count of RFC connections existing within the SAP system that are using dialog users for logon.

Anomaly events

List of anomalies that have occurred in the system, double-click on the event to get more information. To fully utilize potential of this widget, we recommend enabling RFC security audit. More information here (DI-2308) Collector for RFC Security.

RFC connections with dialog users

List of RFC connections on system that are using dialog users.

Security: System

System parameters and OS commands

Shows total number of custom OS command defined on system, number of potentially dangerous command (that may have impact on system if misused) and number of overridden SAP security related parameters (RZ11).

Custom OS commands

List of custom SXPG command names defined on system together with OS command they execute. Double-click on the event to get more information.

Changed security parameters

List of altered security-related system parameters (they have different value than default value). Double-click on the event to get more information.

Imported transports and objects

Displays the total count of imported transports along with the potentially problematic objects contained within them.

Questionable transport objects

List of suspicious objects inside imported transports. These objects include authorization roles or objects, SXPG commands or enhancements.