Roles / Security guide
Im administrating a demo SAP Web App Server Java/ABAP and I'd like to know about security but in specific about roles needed for main tasks, for instance, what permissions are needed for an ABAP Developer, XI user, Portal admin, etc, I don't want to give SAP_ALL to everyone.
Is there any guide / place where I can check this out? not really a guide to Fully Secure SAP Applications, but just about roles needed for each use.
If you want to restrict the authorization and dont want to assign all the users with sap_all it is better to create a customized role for this. There is a way , which i find cinvinient is with a user with sap_all authorization first do all the transactions u wnat to include in the new role. While executing the transactions put the user under authirization trace. U can do this via tcode st01.Whent he tracing is completed u will get a list of all the objects hit for executing the desired tcodes. Create a new roll by assigning all these objects.