Fabio Mambretti

Recent Posts

SAP FIORI Launchpad

Posted by Fabio Mambretti on Sep 15, 2023 12:00:00 AM

SAP Fiori Launchpad the latest GUI to be able to use the latest SAP products.

How is it used? What aspects are also relevant to end users?

Read More

Topics: SAP FIORI Security, FIORI Security

Microsoft Sentinel for SAP

Posted by Fabio Mambretti on Sep 1, 2023 12:00:00 AM

Microsoft Sentinel and SAP: How can these systems be leveraged to have continuous threat monitoring in SAP systems? How do you protect data security in SAP with this tool?

 

A recent but promising solution for Continuous Threat Monitoring management for SAP systems.

Read More

Topics: microsoft, siem, sentinel

How do you write SAP?

Posted by Fabio Mambretti on Aug 18, 2023 12:00:00 AM

Have you ever wondered how to spell, correctly, the acronyms of SAP products?

Did you know that if publications are made with incorrect acronyms, it is not allowed by SAP?

Read More

ChatGPT & SAP Security

Posted by Fabio Mambretti on Aug 4, 2023 12:00:00 AM

What is ChatGPT? What is it used for? And how can it be useful to us?

We have some proof!

Read More

Topics: chatGPT, AI

Zero Trust Security SAP

Posted by Fabio Mambretti on Jul 28, 2023 12:00:00 AM

This is a new model to strive for. Definitely not easy as of today to implement. Unfortunately, it cannot be purchased!

But how could it be in SAP?

Read More

Topics: sap sso, zero trust security

SAP DEFAULT PASSWORD

Posted by Fabio Mambretti on Jan 27, 2023 12:00:00 AM

Did you know that there are "special" SAP users whose credentials are known, public?

This is not an SAP oversight; it is something known and familiar. Especially in the initial setup processes of the system, utilities are activated that should be secured immediately thereafter. But what are they and what should you do?

Read More

Topics: password policy, sap super user, sap password, cyber security, userid

Tip of the day: SAP User Parameters

Posted by Fabio Mambretti on Jan 20, 2023 12:00:00 AM

In this series of articles we discuss the "tip" of the day. That is, real cases of requests received in counseling. 

Today we discuss "is it worth using user parameters to manage permissions?" What are the advantages and disadvantages?

Read More

Topics: parameter sap, SAP GRC, SAP IDM, sap gui

SAP Roles and Profiles, what are they?

Posted by Fabio Mambretti on Jan 13, 2023 12:00:00 AM

In the day-to-day these terms are often used as synonyms , but they're actually not

They can be confused and often it's not clear whether it's correct to talk about SAP profiles or roles. Let's try to underline the differences between these two terms, by starting from the past!

Read More

Topics: sap security blog, authorization model, authorization concept, HANA Roles, Profiles

SE16 in SAP

Posted by Fabio Mambretti on Dec 30, 2022 12:00:00 AM

For some SE16 may be an unknown acronym. For others it is the "bread and butter." It is a SAP transaction remarkably familiar to administrators. And often not only them, unfortunately.

 

 

 

But what is it used for? How many versions of it are there? How do you use it and what are the risks involved?

We discuss  it in this article!

Read More

Topics: se16n, se16, SAP Security, supporto sap ams, sap query, SAP GDPR

System Users with SAP_ALL assigned, no thanks!

Posted by Fabio Mambretti on Jun 24, 2022 12:00:00 AM

This one's a bad habit. Most common causes are:

 

  • Project necessities not better detailed
  • Scarse sensibility towards data security
  • Scarse knowledge of potential problems of this action

 

Why should you remove these users, even non-interactive ones, ASAP? Let's see some examples!

Read More

Topics: sap_all, auditing, rfc, rfc destination, rfc security, system users

Yes Subscribe!

Blog Aglea, what you could find out?

Every Friday a new post, interview or content related to SAP Security.

  • Tips on how to design SAP Security
  • How to
  • Checklist
  • Common error and pitfall on security SAP
  • Interview with experts
  • Who we are and Aglea vision on SAP Security

Recent Posts

Post By Topic

See all