Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

security upgrade testing

Former Member

‎10-05-2011 4:56 AM

0 Kudos

Hi,

We have upgraded our sytem from R/3 4.6 to ECC 6. Have executed the post security upgarde steps and found that most of the roles/transactions got implacted. Now we are in security testing phase. It would be very helpful if you could be provide me inputs regrading how to go about security upgarde testing, stargey to be followed for this testing.

Thanks & Regards

3 REPLIES 3

blanca_serrano
Advisor
Advisor

‎10-05-2011 8:09 AM

0 Kudos

Hello,

The SU25 is the upgrade transaction for the PFCG. In step 2a you can copy the SAP data in the customer environment. With 2b you can compare overlapping default changes from your own with SAP. In step 2c roles,where the new default values would have an impact, are marked. The roles marked with red lights are not invalid and can be used with the old authorization set. If you do not process the step 2c it might be possible that you will run in trouble with new or changed authorization checks, that is why it is recommended to run step 2c and update all red roles.

I hope this helps you.

Regards,

Blanca

Former Member
In response to blanca_serrano

‎10-05-2011 9:17 PM

0 Kudos

Hi

After SU25 steps, you have to identify the list of tcodes which are changed and which are new.

According to that you should visit all the roles where the above ones are present and do the necessary changes of new authorization checks(use expertmode : Read old data and merge with new data)

This step is should be done with lot of assessment with the help of business discussions.

Regards

Hari

Former Member

‎10-06-2011 12:05 PM

0 Kudos

Do what Hari says and then ensure that your updated roles are tested in all the standard e2e business process testing as part of the general upgrade activities.