on 01-23-2009 10:09 PM
Hi,
I am writing a procedure that will be used when refreshing the ECC quality system with a copy of the production system. My customer would like to know if a tool is available to remove what they consider to be Confidential Data.
One of my ideas would be to use the SAP archiving tools and then to flush the flat files.
Any other ideas ?
Regards
Hugo Chartrand
When you are refreshing QA with prod; it meant to bring all data alongwith it. Not sure how important is that data for your testing purposes and if it is something your business need then you are not solving the purpose of refresh. I would sugesst to have security have it handeled like in production and provide limited access to the user.
Archiving if accepted by your company will not be a good solution and would be a recorring activity everytime you have refresh.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hugo
you can wipe out confidential HR data with
delete social insurance number Report: RPUDELPN
Short text
Delete Personnel Numbers Completely
Description
You can use this report to delete personnel numbers.
All infotypes of a personnel number are deleted.
All personnel number-dependent clusters that were created for the personnel number are deleted. Personnel number-dependent clusters are read from table T52B5 Assignment of Values to Objects; cluster TX is taken from table HR Cluster (PCL1).
The Time Events (TEVEN) table is deleted.
The personnel numbers for entries with a completion confirmation (TEVEN-ORDEX = 'X') are deleted from the Order Confirmation(TEVEN_MORE) and Time Events tables. However, the table entries are not deleted.
Data on activities with accounting results/Postings (data transfer to FI) is deleted, see tables:
Activites per Payroll Result (PCALAC)
Index of Payroll Result Lines -> Posting Lines (PPOIX)
Index of Old <-> New Document Lines for 'P' Results (PPOPX)
Existing entries for the personnel numbers that are to be deleted are deleted from the following tables:
Transfer Payroll Account Old (T558A)
Transfer Payroll Account: Payroll Periods (T558B)
Transfer Payroll Account: Wage Type Old (T558C)
Transfer Wage Types with Splitter Indicator (T558D)
Integration data (Organizational Management) and bookings in Training and Event Management are deleted.
The following are not deleted:
Entries in the Temp. Storage for Subsystem Confirmations table (RUECK).
Time events/order confirmations, if confirmation fields exist.
Note:
You can use this program to reset test entries in a particular client. Do not use it in the production system.
Deleted data cannot be recovered
You can set test parameters to determine whether or not the program should create a database update, or whether you want the personnel numbers that are to be deleted to be displayed once as a test run.
Personnel numbers which are locked cannot be deleted. This is not checked during the test run.
Note the following:
Large quantities of data should only be processed in the background (to do so, choose Program -> Execute -> Background in the initial screen of transaction se38) because the program has a very long runtime in this case.
You need to have a write authorization for all HR info(sub)types to be able to start the program. In the authorization objects that are relevant for the HR infotypes, the Infotype and Subtype fields must be defined as '*', and the Authorization Level field as 'W'.
Authorization checks are not carried out when you run this program. Only the authorization group is checked.
Use this program only to reset test data.
Only personnel numbers with a Payroll Status (0003) record are selected and deleted. This infotype must be created again for a partially deleted personnel number that no longer contains this infotype.
Output
If you select the Detailed log option, the program outputs a list of deleted personnel numbers and then prints all processed personnel numbers.
A warning is displayed for a test run.
The sequential number is displayed for PDC messages (PDSNR) if a completion confirmation exists (see above).
The program displays a list of incorrect personnel numbers which could not be deleted.
Note
The relevant infotypes are read from table T582A Customer-Specific Settings. If this table contains no entry, no data is deleted.
What we also use to do is:
delete all FAX/Mails in SCOT
delete all IDOCs
delete all tRFC/qRFC
delete all update records
...
all this could potentially contain confidential data as well
regards
nesimi
Edited by: Nesimi Buelbuel on Jan 24, 2009 11:34 AM
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
who will be accessing QA that don't have access to PRD?...
Archiving is not going to help you...
Regards
Juan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.