Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Security Audit Log Activation and Capabilities

Former Member

‎04-15-2010 6:48 AM

0 Kudos

Dear All:

There is a request to activate the security log for our SAP systems specially the finance one. How can I activate it to achieve the followings:

1-Audit the employees how access the screens, tables, data...etc

2-Audit all changes by all users to the data

3-Keep the data up to one month

4-Log retention period can be defined.

I checked the sm19/sm20 but the options are:

1-Dialog logon

2-RFC login/call

3-Transaction/report start

4-User master change

5-System/Other events

Can I use these options to achieve the requested requirements? What are other transactions that I can use to do that?

Our systems are on Windows 2003 with SQL2005.

Regards,

Ahmad Yasin

2 REPLIES 2

Former Member

‎04-15-2010 7:27 AM

0 Kudos

Hi,

If you configure Security Audit you can achieve your goals...

1-Audit the employees how access the screens, tables, data...etc

Answer : Option 1 & 3

2-Audit all changes by all users to the data

Answer : Option 1 & 3

3-Keep the data up to one month

Answer: No such settings, but you can define maximum log size.

4-Log retention period can be defined.

Answer: No !.. but you can define maximum log size.

SM19/SM20 Options:

1-Dialog logon

You can check how many users logged in and at what time

2-RFC login/call

Same as above you can check RFC logins

3-Transaction/report start

You can see which report or transaction are executed and at what time

(It will help you to analyise unauthorized data change. Transactions/report can give you an idea, what data has been changed. So you can see who changed the data)

4-User master change

(You can see user master changes log with this option)

5-System/Other events

(System error can be logged using this option)

Hope, it clear the things...

Regards.

Rajesh Narkhede

Former Member

‎04-15-2010 7:59 AM

0 Kudos

This is a story with many options.

What you are looking for is some training, if you are expecting the audit log to give you all of this information.

ADM950 deals with the standard options of Security Log, Syslog, Application log, table log, HR-data log, Gateway log, etc...

Cheers,

Julius