04-15-2010 6:48 AM
Dear All:
There is a request to activate the security log for our SAP systems specially the finance one. How can I activate it to achieve the followings:
1-Audit the employees how access the screens, tables, data...etc
2-Audit all changes by all users to the data
3-Keep the data up to one month
4-Log retention period can be defined.
I checked the sm19/sm20 but the options are:
1-Dialog logon
2-RFC login/call
3-Transaction/report start
4-User master change
5-System/Other events
Can I use these options to achieve the requested requirements? What are other transactions that I can use to do that?
Our systems are on Windows 2003 with SQL2005.
Regards,
Ahmad Yasin
04-15-2010 7:27 AM
Hi,
If you configure Security Audit you can achieve your goals...
1-Audit the employees how access the screens, tables, data...etc
Answer : Option 1 & 3
2-Audit all changes by all users to the data
Answer : Option 1 & 3
3-Keep the data up to one month
Answer: No such settings, but you can define maximum log size.
4-Log retention period can be defined.
Answer: No !.. but you can define maximum log size.
SM19/SM20 Options:
1-Dialog logon
You can check how many users logged in and at what time
2-RFC login/call
Same as above you can check RFC logins
3-Transaction/report start
You can see which report or transaction are executed and at what time
(It will help you to analyise unauthorized data change. Transactions/report can give you an idea, what data has been changed. So you can see who changed the data)
4-User master change
(You can see user master changes log with this option)
5-System/Other events
(System error can be logged using this option)
Hope, it clear the things...
Regards.
Rajesh Narkhede
04-15-2010 7:59 AM
This is a story with many options.
What you are looking for is some training, if you are expecting the audit log to give you all of this information.
ADM950 deals with the standard options of Security Log, Syslog, Application log, table log, HR-data log, Gateway log, etc...
Cheers,
Julius