Skip to Content
author's profile photo Former Member
Former Member

Integrated ITS 640 - Restricting Transaction code through ITS

We have exposed our ERP on Internet using ITS. We have two firewall where we have installed

DMZ_1 - Apache Reverse Proxy serer

DMZ_2 - Web Dispatcher

Internal Network - ERP ECC 5.0

We want to restrict the ERP Transaction available on ITS for security reason. Currently when the ITS WebGui is called , it allows user to call any transaction from WEBGUI command line. This has to be restricted even though the user may have access of multiple transaction code through Windows SAP GUI on the internal network.

Appreciate how we can restrict ITS to single transaction.

Thanks

Sanjay

Hindustan Unilever Limited

Bangalore

Add a comment
10|10000 characters needed characters exceeded

Related questions

2 Answers

  • author's profile photo Former Member
    Former Member
    Posted on Dec 03, 2007 at 09:15 AM

    Hi,

    what about reading the Wiki FAQ article 'Employ SAP GUI for HTML instead of an Internet service'?

    This article describes exactly how to support your ideas.

    best regards

    Tobias

    Add a comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Dec 03, 2007 at 11:19 AM

    Dear Tobias

    1) Thanks for your inputs. I will check out the same in our test system.

    2) We have a BIW system also which is exposed on the Internet. We use WAS for publishing the Bex reports through portal. The URL link looks as below (ending with query = <report name>)

    http://xyz.com/sap/bw/BEx?saclient=100∾cessibility=&.........&query=YRSNORM_Q001_01

    We want to restrict the number of reports that can be available on the internet eg. financial related reports. Even though the user has access to the same on the intranet we DO NOT want him to be able to access the report over the internet. Any way we can handle this same ?

    Regards

    Sanjay

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.