Note 1525695: How to check if it is now working

Former Member · ‎02-15-2011

Recently, SAP has released a news telling that access to tcode SE37 can lead to an undesired system behavior because "Function Builder" lacks permission checks for an authenticated user's authorization to access its test functionality. We have recently implemented the said note in our Development system. However, how can I know if the note implemented is now working? Also, could someone please inform me what is meant by the statement "authenticated user's authorization"? Does this mean that when user access tcode SE37, there are additional checks on my user if it has enough authorization? I tried accessing SE37 and I expect checks (like pop up window or some message) to verify if I have enough authorization as stated above, but did not experience it.

Former Member · ‎02-16-2011

Hi Puneeth. We are the security team in this case. How can we classify who should and should not have access to the test functionality of SE37? We don't need access to this, but we need to verify if the applied note is now working and there is already permission checks in place whenever a user accesses SE37.

Former Member · ‎02-16-2011

Thank you for your inputs and clarifications Puneeth. How can we now identify that our development system has now permission checks in place whenever a user accesses SE37? Could you kindly provide some steps and/or proposals on how to do this?

Note 1525695: How to check if it is now working

Accepted Solutions (0)

Answers (2)

Answers (2)

Re: Corporate Git Setup on SAP BTP versus connecti...

Re: User input for SAP LAMA/LVM custom operation

Upload file capability in landscape manager

Error getting value from 'ReadTimeout'

Re: Integrate an external task system to Cloud ALM...