Skip to Content
avatar image
Former Member

Access Control in WEBGUI

We have implemented Enterprise portal on the internet. any authenticated users are able to type http:\\\sap\bc\gui\sap\bc\its\webgui to access the webgui page. at this page, user can attempt to access almost all tcodes from the SAP menu. Please advise how to block this from internet users.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Apr 06, 2017 at 11:21 AM

    Dear Eng,

    The WEBGUI (SAPGUI for HTML) is one of three GUI types (the other two are SAPGUI for Windows and SAPGUI for Java).

    The same security principle for the other GUIs applies to WEBGUI: roles and profiles defined for each user ID via PFCG.

    You need to contact your security team to verify whether there are users with excessive authorizations. They can also use the Security Audit Log to check whether a specific user ID is trying to access transactions that are not related to his/her profile.

    Kind regards,

    Cris

    Add comment
    10|10000 characters needed characters exceeded

  • Apr 06, 2017 at 04:39 PM

    Hi Eng,

    another method would be to create transaction iViews in the Portal - so that an End User logged onto the Portal has only access to specific transaction pool.

    See also the following link which is related to Cris's post:

    How to limit access to an ITS service to specific users?

    Regards,

    Oisin

    Add comment
    10|10000 characters needed characters exceeded