SAP Security ECC 4 | Basic TCodes SE16, AL08, SM54, SA38
Summary
TLDRThis SAP tutorial covers essential transaction codes and commands necessary for managing SAP system integrity and user interactions. Key topics include the use of SICK to verify installation properness, SM51 for checking server activity, SM04 for listing active users in instances, and SL08 for viewing users across instances. The tutorial also introduces basic navigation commands such as '\n' for executing transactions within the same screen and '\o' for opening new sessions. Additionally, it emphasizes the importance of changing passwords for standard users like SAP* and DDIC to prevent unauthorized access and potential fraud. Special reports like RSUSR003 and RSUSR006 help track password changes and user log-in activities. The transaction code SM30 is highlighted for modifying tables, while SC16 and SC16N are utilized for browsing table data. The guide underlines the necessity of checking standard user password status regularly to uphold security in any SAP environment.
Takeaways
- 📂 Use SICK to check SAP installation integrity.
- 🖥️ SM51 helps verify if your server is active.
- 🧑💻 SM04 lists active users in your system instance.
- 🔒 Regularly update standard user passwords like SAP*.
- 📊 Use RSUSR003 report to check if passwords have been updated.
- 🔍 SC16 and SC16N help browse table details.
- ✏️ Modify tables using SM30 when needed.
- 📈 Use SA38 to generate SAP reports.
- 📂 AL08 shows active users across all system instances.
- ➡️ Use '\n' and '\o' for efficient navigation in SAP.
Timeline
- 00:00:00 - 00:05:00
The video starts with an explanation of the SAP screen layout, including the menu bar, standard toolbar, title bar, application toolbar, and status bar that shows user login information.
- 00:05:00 - 00:10:00
Introduces the first SAP transaction code 'SICK' for checking system installation and 'SM51' for checking if the server is active.
- 00:10:00 - 00:15:00
Explains how to return to the SAP main screen or log off from the system using the logout button, with warnings about unsaved data.
- 00:15:00 - 00:20:00
Describes the 'SM04' transaction code for displaying active users on a server instance and discusses instance and client differentiation.
- 00:20:00 - 00:25:00
Continues the description of 'SM04' and introduces 'AL08', a transaction code for viewing active users across all instances.
- 00:25:00 - 00:30:00
Shows an example of how to use 'SM04' and 'AL08' to view user sessions, emphasizing on client-dependent vs client-independent data.
- 00:30:00 - 00:35:00
Demonstrates session and command usage with explanations of commands like '/n', '/o', '/nend', and '/nex' for managing SAP sessions efficiently.
- 00:35:00 - 00:40:00
Details steps to use '/n', '/o', '/nend', '/nex' commands for session management, explaining their specific functions for executing transactions.
- 00:40:00 - 00:45:00
Explains the difference between 'SE16' and 'SE16N' transaction codes for accessing table data, with 'SE16N' displaying both English and technical names.
- 00:45:00 - 00:50:00
Introduces 'SM30' for table modification and 'SA38' for generating reports, with a specific report 'RSUSR003' for checking standard user passwords.
- 00:50:00 - 00:56:49
Ends with a summary of SAP command usage, transactions, focusing on security tasks such as managing user passwords using reports like 'RSUSR003' and 'RSUSR006'.
Mind Map
Video Q&A
What is the transaction code to verify if SAP is installed correctly?
The transaction code is SICK, which stands for SAP Initial Consistency Check.
Which transaction code checks if the SAP server is active?
The transaction code SM51 checks if the SAP server is active.
What command is used to open a new session in SAP?
The command '\o followed by the transaction code' is used to open a new session in SAP.
What does the SM04 transaction code do?
The SM04 transaction code displays a list of all active users in a particular instance.
How do you execute a transaction in the same screen in SAP?
Use the command '\n followed by the transaction code' to execute a transaction in the same screen.
Which transaction code is used for viewing all active users across multiple instances?
The transaction code AL08 is used to view all active users across multiple instances.
What are the standard users whose passwords need to be regularly checked?
Standard users like SAP* and DDIC need to be checked to prevent unauthorized access.
Why is it important to change the standard user passwords in SAP?
Changing standard user passwords prevents unauthorized access and potential fraud.
What report helps verify if standard user passwords have been changed?
The report RSUSR003 helps verify if standard user passwords have been changed.
Which transaction code is used to modify tables in SAP?
The transaction code SM30 is used to modify tables in SAP.
View more video summaries
Westside Barbell Podcast #21 - Louie Simmons reveals how he overcame his injuries to succeed
Russia's Putin: The US is parking missiles "on the porch of our house"
8 Cardio Mistakes Slowing Down Fat Loss
What is Process Automation?
Demonstration of AUV-Based Structural Acoustic Sonars for Underwater UXO Detection & Classification
Commanding Heights: The Battle of Ideas- Episode One (Official Video)
- 00:00:00active or not executed
- 00:00:49so this is the first line is the menu
- 00:00:53bar after that you have standard toolbar
- 00:00:56after that you have title bar and after
- 00:00:58that you have
- 00:01:02application toolbar and in the down you
- 00:01:05will find status bar in status bar only
- 00:01:08you will find which user you log in into
- 00:01:11and what is your yes ID and in which
- 00:01:14client you log in
- 00:01:18this is a basic positive screen this
- 00:01:21screen we call it as session manager
- 00:01:23screen
- 00:01:24so whenever when you what is the first
- 00:01:27transaction code once it faces
- 00:01:29consultant to install sap application
- 00:01:31first transaction code is s i c k s i c
- 00:01:36k is the transaction code to check
- 00:01:39whether sap is installed properly or not
- 00:01:42after installing sap after installing
- 00:01:46sap
- 00:01:47they are supposed to check basis
- 00:01:49consultant will check whether sap is
- 00:01:51installed properly or not
- 00:01:54sap IC ick means s i c k sap initial
- 00:02:00consistency check SAP initial
- 00:02:03consistency check
- 00:02:05here you find no reports no errors
- 00:02:08reported it indicates that your sap
- 00:02:11application is installed properly how
- 00:02:14often we will check this particular
- 00:02:16transaction code how often we will check
- 00:02:18this particular transaction board only
- 00:02:21once at the time of the completion of
- 00:02:23installation
- 00:02:27second transaction queries yes M51
- 00:02:33sm51 indicates that sm51 indicates that
- 00:02:38to check whether server is active or not
- 00:02:42if you want to check whether server is
- 00:02:45active or not
- 00:02:47scm-51 is a transaction code to check
- 00:02:51whether server is active or not
- 00:03:03thank you here you will find only one
- 00:03:06server whatever the server you log in
- 00:03:08into this is either system you will find
- 00:03:11only one server but in real time you
- 00:03:15will find list of all server details
- 00:03:18list of all server details and in a lost
- 00:03:21column you will find the server state
- 00:03:24where the server is active or not
- 00:03:27whether server is active or not
- 00:03:30foreign
- 00:03:56foreign
- 00:04:30reports and programs
- 00:04:33okay next trans once if you execute any
- 00:04:36transaction code once if you execute any
- 00:04:39transaction code if you want to come
- 00:04:41back to your main screen means click on
- 00:04:44Bank or click on exit
- 00:04:48if you want to log out from the system
- 00:04:50here you will find a log off button
- 00:04:52click on log off
- 00:04:55unsaved data will be lost do you want to
- 00:04:58log on system is going to be ask you if
- 00:05:01any
- 00:05:02uh sessions are open if you want to if
- 00:05:06your log out means the data will not be
- 00:05:09saved system is where is a prompt
- 00:05:11message if you open any kind of sessions
- 00:05:14please save those sessions and then log
- 00:05:17off now I am not log off if you log off
- 00:05:19means your session will be
- 00:05:22exit
- 00:05:25next transaction code is next
- 00:05:28transaction code is
- 00:05:32yes m04 this is security related
- 00:05:36transaction code
- 00:05:38sm04 is a transaction code
- 00:05:42displays
- 00:05:47list of
- 00:05:49all active users
- 00:05:53for a particular
- 00:05:55instance
- 00:05:57list of all active users for a
- 00:06:00particular instance
- 00:06:05see this is your server
- 00:06:12is
- 00:06:19multiple instances
- 00:06:24maximum number of instances or the slow
- 00:06:28Miracle multiple drives
- 00:06:35zero zero Nancy
- 00:06:3899 devices maximum number of instances
- 00:06:42can be created 100
- 00:06:45for each and every instance we have
- 00:06:49default clients for each and every
- 00:06:51instance we have default clients
- 00:06:54triple zero zero zero one zero double
- 00:06:56six and whatever the clients whatever
- 00:07:00the clients your basis consultant are
- 00:07:02going to be created and also those
- 00:07:04clients also include
- 00:07:13so each and every client related data is
- 00:07:16trying to dependent data each and every
- 00:07:18client's related data is client
- 00:07:20dependent if you if it is applicable to
- 00:07:24all the client screens that is a client
- 00:07:26independent what is the difference
- 00:07:28between client dependent and client
- 00:07:30independent client dependent is if you
- 00:07:33do any modifications it is going to be
- 00:07:36referred to particular client client
- 00:07:38independent means if you do any
- 00:07:40modifications it is going to be reflect
- 00:07:42to all the clients
- 00:07:47sm04 is a transaction core list of all
- 00:07:52active users active users means at this
- 00:07:56particular point of Time how many users
- 00:07:59are login interest system system is
- 00:08:01going to be displayed list of all active
- 00:08:04users for a particular instance
- 00:08:10yes m04
- 00:08:14sm04 is the transaction code displays
- 00:08:19list of all active users in a particular
- 00:08:21instance these are all the clients as I
- 00:08:25told you that if You observe here
- 00:08:28this is the server details this is the
- 00:08:31server and this is your Sid id7 is your
- 00:08:35Sid and this is your instance in this
- 00:08:38particular instance this is idea system
- 00:08:41so here it displays only one particular
- 00:08:44instance this is either Sim this is
- 00:08:47either system so it displays only one
- 00:08:51particular instance
- 00:08:53so sm04 is it is system is going to be
- 00:08:56display list of all active users again
- 00:09:00as a particular instance this instance
- 00:09:03number is double zero
- 00:09:05and another transaction code is there
- 00:09:08al08 I will write and explain if you
- 00:09:11execute al08 how many instances are
- 00:09:15created how many instances are created
- 00:09:17and each and every instance how many
- 00:09:20users are active here how many users are
- 00:09:24active system is going to be displayed
- 00:09:26list of all active users for all
- 00:09:30instances list of all active uses for
- 00:09:34all instances
- 00:09:36foreign
- 00:09:48[Music]
- 00:09:57so these are all the clients in triple
- 00:10:00zero eight hundred and eight ten this is
- 00:10:03my user ID I login into 8.0 user ID
- 00:10:09I login into 810 user ID and this is my
- 00:10:13system name and this is the time
- 00:10:16and session only one session it
- 00:10:20indicates that if I open a number of
- 00:10:22sessions it is going to be description
- 00:10:24two three four kind of thing
- 00:10:28priorities High session type how I login
- 00:10:32into the system with the help of GUI
- 00:10:35application whatever the login into the
- 00:10:39whatever we login into the system is the
- 00:10:41help of sap logon we call it as sap GUI
- 00:10:46and memory allocated this one and
- 00:10:52then 0 4 is a transaction 4 these are
- 00:10:55all the users at this particular point
- 00:10:57of time these are all the users login
- 00:10:59into the system
- 00:11:01follow the results
- 00:11:06which one
- 00:11:08uh this is a a sap ID is id7 underscore
- 00:11:12zero zero in place of that for us it
- 00:11:14shows NSP zero score
- 00:11:18where it is
- 00:11:20for us for us in our acid
- 00:11:26in our sap login
- 00:11:28in your lsap login it shows
- 00:11:34uh ECC HP 7 underscore NSP underscore
- 00:11:38zero seven like that
- 00:11:41here like here right yeah yeah exactly
- 00:11:44okay this is your server name okay
- 00:11:48underscore nsp7
- 00:11:51yeah MSP is your
- 00:11:54yes ID system identifier okay
- 00:11:59and underscore zero seven right yeah
- 00:12:02yeah that is your instance that instance
- 00:12:05you're logging into just now I told you
- 00:12:07that the server is going to be divided
- 00:12:09into multiple partitions okay so your
- 00:12:13partition number is zero seven okay so
- 00:12:17each if you execute sm04 system is going
- 00:12:21to be displayed only 0 7 instance how
- 00:12:26many users are logging into okay the
- 00:12:30system is going to be displayed that in
- 00:12:32zero seven how many users are logged in
- 00:12:34in the system okay okay if you execute
- 00:12:39al08 if you execute al08 how many
- 00:12:44instances are there system is going to
- 00:12:47be displayed list of all active users
- 00:12:51for all instances but here system won't
- 00:12:55display why because we are using either
- 00:12:57system here even though if you execute
- 00:13:00al08 system is going to be displayed
- 00:13:03that
- 00:13:04only this particular instance
- 00:13:07information but whenever once if you
- 00:13:09join in any organization once if you
- 00:13:12execute means system is going to be
- 00:13:14displayed zero zero instance active
- 00:13:16users how many instances are there
- 00:13:19system is going to be displayed that
- 00:13:21many instances followed by how many
- 00:13:24users are logging into the system okay
- 00:13:27and here it is not possible to display
- 00:13:30why because we are using High
- 00:13:32complaining system okay okay yep
- 00:13:37one second I'm going to be write down
- 00:13:40the
- 00:13:53al08
- 00:13:55al08 displays
- 00:13:58list of all active users
- 00:14:04for all instances list of all active
- 00:14:07users for all instances al08 is going to
- 00:14:11be displayed list of all active uses for
- 00:14:15all instances
- 00:14:18here it is not possible
- 00:14:25al08 if you click on enter
- 00:14:31C this is your system if you execute you
- 00:14:35will find NSP 7 or whatever
- 00:14:38yes it is it is going to be display your
- 00:14:40Sid here and
- 00:14:43this is your ins 0 0 is my instance at
- 00:14:47present number of systems after
- 00:14:49completion of this again in real time
- 00:14:51system it is going to display that other
- 00:14:54instance details it is going to be
- 00:14:57displayed at other instance periods
- 00:15:02al08
- 00:15:04is the transaction code list of all
- 00:15:07active uses for a for all uh list of all
- 00:15:12active users for all instances
- 00:15:21every time when I execute the
- 00:15:24transaction code every time when I
- 00:15:26execute the transaction code instead of
- 00:15:29click on back
- 00:15:31Arrow or instead of click on exit button
- 00:15:36every time right
- 00:15:40[Music]
- 00:15:43sap provided some kind of commands sap
- 00:15:47provided some kind of comments
- 00:15:51those commands are there are four
- 00:15:54commands are there
- 00:15:56foreign
- 00:16:00there are four commands out there slash
- 00:16:04n
- 00:16:05followed by transaction code
- 00:16:12slash n e n d
- 00:16:15slash n e x
- 00:16:19slash n followed by followed by
- 00:16:27transaction code
- 00:16:30what if this place means whatever the
- 00:16:33session whatever the transaction pull
- 00:16:35you open the transaction if you execute
- 00:16:38slash n s i c k this particular
- 00:16:41transaction code is close and exit and
- 00:16:43open the sick
- 00:16:46slash n followed by transaction code
- 00:16:49whatever the transaction could you want
- 00:16:51to execute if you use Flash and forward
- 00:16:54by that particular transaction code then
- 00:16:57this screen is going to be close and
- 00:16:59open the SIC case
- 00:17:07if you use slash woe if you use slash
- 00:17:10vote whatever here if you use in command
- 00:17:13button slash go followed by transaction
- 00:17:16code this screen will available and it
- 00:17:19opens one another window or another
- 00:17:22section it opens another window on
- 00:17:25another session if I execute slash o
- 00:17:28followed by here if You observe that I
- 00:17:31am going to be close all the unnecessary
- 00:17:33strings
- 00:17:42this is your screen sap initial
- 00:17:44consistency check
- 00:17:49here if I open slash row followed by
- 00:17:53sam04
- 00:17:57[Music]
- 00:18:08here if you open
- 00:18:11if you enter execute any transaction
- 00:18:13code followed by slash 4 followed by
- 00:18:16sm04 and then click on enter you will
- 00:18:20find here
- 00:18:23this is your screen this screen will be
- 00:18:26available and it opens one more window
- 00:18:29slash o means open the transaction code
- 00:18:33in another window
- 00:18:37this is another screen previously If You
- 00:18:39observe that
- 00:18:41this is your sick screen this is your
- 00:18:44another screen If You observe that in
- 00:18:46session
- 00:18:47If You observe that in session column
- 00:18:53number of sessions previously it was one
- 00:18:56now it now it displays two why because
- 00:19:00two windows are open two windows are
- 00:19:03open these are the two main commands
- 00:19:06which we are using on regular basis
- 00:19:08every time why we are supposed to use
- 00:19:11these commands every time when you
- 00:19:13execute the transaction code if you are
- 00:19:16supposed to come back and execute
- 00:19:18another transaction code instead of that
- 00:19:21sap provided two commands slash CN and
- 00:19:25slash rule slash n indicates that
- 00:19:33slash and indicate
- 00:19:36704
- 00:19:38slash and indicates that now you are
- 00:19:40into this particular screen I want to
- 00:19:42execute sm51 in the same screen means
- 00:19:46instead of going back and then execute
- 00:19:48SM uh qp1 we are supposed to use the
- 00:19:52transaction code we are supposed to use
- 00:19:55the command followed by transaction code
- 00:19:57slash n followed by transaction code
- 00:20:00sm51
- 00:20:04it opens in the same screen it opens in
- 00:20:07the screen same screen
- 00:20:09and if you you want this screen
- 00:20:11available as it is and if you want
- 00:20:13another transaction code in another
- 00:20:15window means then you are supposed to
- 00:20:18use slash followed by transaction 4
- 00:20:21slash o followed by transaction core
- 00:20:24eal08 or SM whatever the transaction
- 00:20:31Here If You observe that
- 00:20:33three sessions are open
- 00:20:36number of existing sessions three
- 00:20:41if you open slash o sm04 number of
- 00:20:45sessions will be incremented by one it
- 00:20:48indicates that four sessions are open
- 00:20:51previously it was two now it is four why
- 00:20:54this space 4 why because we open that
- 00:20:58many sessions
- 00:21:06these four commands we are supposed to
- 00:21:08use on regular intervention
- 00:21:10and these two are related to if you are
- 00:21:13supposed to execute basic any
- 00:21:15transaction code in the same window or
- 00:21:17if you are supposed to execute the
- 00:21:19transaction code in another window
- 00:21:33you need to
- 00:21:35click on exit
- 00:21:38exit
- 00:21:45you need to exit like this
- 00:21:49exit
- 00:21:51and
- 00:21:53log on
- 00:21:55your section will be logo
- 00:22:05once if you click on yes your session
- 00:22:07will be log on how many windows do you
- 00:22:10open if you are supposed to click on
- 00:22:12exit system is going to be close one by
- 00:22:14one window and finally you are supposed
- 00:22:17to log off from the system
- 00:22:19foreign
- 00:22:49ex if you use the command slash n e n d
- 00:22:54system is going to be open
- 00:22:59are you sure you want to or you should
- 00:23:02you want to log off or not if there is
- 00:23:05an unsaved data please save the data and
- 00:23:07log on system is going to be there is a
- 00:23:09prompt message if there is unsaved data
- 00:23:12if you want to save the data save first
- 00:23:14and then you are supposed to log
- 00:23:16and if you execute slash and EX system
- 00:23:20won't display any kind of pop-up message
- 00:23:23it once if you execute slash an ex
- 00:23:26command automatically how many sessions
- 00:23:29you open automatically every session
- 00:23:32will be closed automatically every
- 00:23:35session will be close
- 00:23:37you are supposed to log off from the
- 00:23:39session without any wrong message
- 00:23:49so just I am going to execute slash sick
- 00:23:52or sm04
- 00:23:58now I want to log off instead of log off
- 00:24:01means if you use means two times I am
- 00:24:03going to use inside of that if I am
- 00:24:06going to be execute slash n e n d and
- 00:24:09then click on enter system is going to
- 00:24:12be displayed build iron save data will
- 00:24:14be lost do you want to log off if you
- 00:24:17click on yes you are supposed to log off
- 00:24:19from the session again you need to login
- 00:24:22into the system
- 00:24:40see I log in my login ID is eight one
- 00:24:44zero if I try to login into another
- 00:24:46clients what happened you display name
- 00:24:48or password is incorrect
- 00:24:51foreign
- 00:25:13two sessions are open right this is sm04
- 00:25:16and al08
- 00:25:19and I am going to be open
- 00:25:20sm51 as well I will open three sessions
- 00:25:25three number of sessions so whenever
- 00:25:28when you use this standard against the
- 00:25:31standard tool but if you are supposed to
- 00:25:32exit means you need to do how many
- 00:25:34sessions are open you need to do that
- 00:25:36many times instead of that there are two
- 00:25:38commands out there slash n e and d and
- 00:25:42slash n e x already you you have seen
- 00:25:45that slash n e n d slash n e and D once
- 00:25:48if you execute this command system is
- 00:25:51going to be asked unsaved data will be
- 00:25:52lost please save the data first and then
- 00:25:55please check whether you want to save
- 00:25:57any kind of data once if you save the
- 00:25:59data and log off from the session do you
- 00:26:02want to log off if you click on Yes
- 00:26:03means your system your session will be
- 00:26:06logged on
- 00:26:07so you will receive one prompt message
- 00:26:11once if you execute slash n ENT if you
- 00:26:16execute slash cam ex without any prompt
- 00:26:20message if you execute slash and ex
- 00:26:22without any prompt message your session
- 00:26:25will be logged now
- 00:26:27log on here there are three sessions are
- 00:26:30there if I click on enter every session
- 00:26:33will be close
- 00:26:35If You observe here you can't find the
- 00:26:38other sessions
- 00:26:39you can't find the other sessions
- 00:26:41understood these commands these are the
- 00:26:43four commands which we are supposed to
- 00:26:44use on regular intervals slash n it
- 00:26:48opens in the same window whatever the
- 00:26:50transaction could be executed it opens
- 00:26:52in the same window slash o it opens in
- 00:26:56another window slash and ex whenever
- 00:26:59when you are supposed to log out from
- 00:27:00the session you are supposed to use
- 00:27:02slash n a d it displays that prompt
- 00:27:05message are you sure you want to log out
- 00:27:07from the session or not slash n e x
- 00:27:10without any prompt message you are
- 00:27:13supposed to logout from the session
- 00:27:15these are the four commands
- 00:27:21sure
- 00:27:22sorry the last comment it won't save
- 00:27:24data right without saving the data we
- 00:27:27are going to close that session okay
- 00:27:29yes yes system won't provide any kind of
- 00:27:35prompt messages whatever if you are
- 00:27:37supposed to it means that everything
- 00:27:39will be lost
- 00:27:50any doubts up to here
- 00:27:53there are another transaction codes are
- 00:27:56there
- 00:27:57as I told you that about what are our
- 00:27:59Technologies are they terminologies we
- 00:28:02have transaction course
- 00:28:11transaction course
- 00:28:18tables
- 00:28:20reports
- 00:28:21and programs so whatever you are
- 00:28:25supposed to Once if you login into the
- 00:28:28system till logout whatever you are
- 00:28:30supposed to execute any transaction code
- 00:28:31whatever you need in sap everything is
- 00:28:34going to be stored everything is going
- 00:28:36to be stored in in the form into
- 00:28:38database database are in the form of
- 00:28:40tables tables are in the form of rows
- 00:28:43and columns tables are in the form of
- 00:28:45rows and columns so whenever when you
- 00:28:49are supposed to execute or whenever when
- 00:28:51you want to browse any table information
- 00:28:54there is there are two transaction codes
- 00:28:57are there first you need to execute the
- 00:29:00transaction code and then you are
- 00:29:02supposed to type the table name there
- 00:29:04are two transaction codes which are
- 00:29:06related to tables SC 16
- 00:29:09or SC 16n
- 00:29:14SC 16 or SC 16n these are the two tables
- 00:29:18to browse these are the two transaction
- 00:29:21forms to browser tables
- 00:29:26so whatever you want to
- 00:29:29if whatever the data you want to fetch
- 00:29:31from the tables means first you need to
- 00:29:34execute these transaction code and then
- 00:29:37you need to type the table name and then
- 00:29:39you are supposed to execute it now I
- 00:29:42won't execute these two transaction
- 00:29:44posts I will explain the difference
- 00:29:46between SC 16 and SC 16n n indicates
- 00:29:52n in the case new transaction code at
- 00:29:54the time of working with tables I will
- 00:29:57explain you the difference between sc16
- 00:29:59or SC 16n or else you play a person no
- 00:30:03issues
- 00:30:06foreign
- 00:30:28first I am going to be execute sc16
- 00:30:33and then click on enter
- 00:30:36whenever when I click on enter it opens
- 00:30:39St ac16 this is the ss16 screen it
- 00:30:43displays the data processor
- 00:30:47if you type the table name and then
- 00:30:49execute if you type the table name and
- 00:30:51then execute
- 00:30:52against the table generally assume that
- 00:30:57this is your table
- 00:31:14assumed that these are the table columns
- 00:31:16a simple example like employee ID
- 00:31:25employee name
- 00:31:29these are the fields nothing but a
- 00:31:31fields
- 00:31:33employee location or designation
- 00:31:37and this is the data type
- 00:31:46worker
- 00:31:51and this is a description of the
- 00:31:53particular field and whenever when any
- 00:31:56app if they are supposed to create any
- 00:31:59tables means
- 00:32:01any tables means
- 00:32:03this is the English name which we are
- 00:32:06supposed to understand our language and
- 00:32:09for each and every field they maintain
- 00:32:13One technical name for each and every
- 00:32:16field they maintain One technical name
- 00:32:19for each and every field
- 00:32:21TN means not Tamil Nadu it is technical
- 00:32:24name or not Telangana state
- 00:32:29so for each and every field
- 00:32:32above us or developers they maintain for
- 00:32:35each and every build one technical name
- 00:32:37if you execute SC 16
- 00:32:40if you type the table name and then
- 00:32:43click on enter if you type the table
- 00:32:45name and then click on enter system is
- 00:32:48going to be displayed either English
- 00:32:51name or
- 00:32:53technical name it is placed only either
- 00:32:56English name or technical name but when
- 00:32:59you execute SC 16 in it displays both
- 00:33:04English name as well as technical names
- 00:33:07this I will explain you again at the
- 00:33:11time of working with tables I will
- 00:33:13explain you what again at the time of
- 00:33:15working with tables but if you execute
- 00:33:18sc16 n
- 00:33:21here if you use sc16 you need to type
- 00:33:25the table name first and then click on
- 00:33:27enter again one more again this
- 00:33:30particular screen is going to be close
- 00:33:31and open the another screen if you use
- 00:33:35sc16 n
- 00:33:37If You observe that n indicates that new
- 00:33:40transaction code this is the new design
- 00:33:46you need to type the table name here you
- 00:33:49need to type the table name here and
- 00:33:51then click on enter in the same screen
- 00:33:53only system is going to be displayed how
- 00:33:56many fields are there system is going to
- 00:33:59be displayed how many fields are there
- 00:34:01against this particular table it system
- 00:34:04is going to be displayed all the field
- 00:34:06names these are these are the English
- 00:34:08names these are the English names and
- 00:34:11for each and every English name here we
- 00:34:14are supposed to display technical names
- 00:34:16for that here in yes if you use SC 16 in
- 00:34:20system is going to be displayed both
- 00:34:22English name as well as technical name
- 00:34:25in the same screen but if you use sc16
- 00:34:29you you need to type the table name in
- 00:34:33one screen and if you click on enter it
- 00:34:36opens another screen and here it is
- 00:34:40going to display either English name or
- 00:34:43technical name either English name or
- 00:34:45technical them
- 00:34:48at the time of working with the tables I
- 00:34:51will show you these two again
- 00:34:55SC 16 and SC 16n if you want to browse
- 00:35:00the table information or if you want to
- 00:35:02browse an able you are supposed to use
- 00:35:05sc16 or SC 16n
- 00:35:10yes m 30 is the transaction code
- 00:35:15to modify a table to modify the table
- 00:35:20is a transaction go to modify the team
- 00:35:24so most of the scenarios above us they
- 00:35:28are supposed to modify the table
- 00:35:29information or if they want to add any
- 00:35:32column or if they want to delete any
- 00:35:34columns so they are supposed to modify
- 00:35:37the table information
- 00:35:38if any other as a security consultant we
- 00:35:41will modify only one table the table at
- 00:35:44the time of the particular session I
- 00:35:46will explain what is the table name why
- 00:35:48we are supposed to use modifications
- 00:35:49that I will explain at that time so
- 00:36:08then type the table name and then click
- 00:36:11on change you are supposed to monitor
- 00:36:14these two were which are related to
- 00:36:17tables
- 00:36:18there is one more transaction code you
- 00:36:21if you are supposed to generate reports
- 00:36:23whatever the data data is going to be
- 00:36:26stored in the form of tables from tables
- 00:36:29there are some reports are there with
- 00:36:31the help of those suppose you are
- 00:36:33supposed to fetch the data using table
- 00:36:35information only so if you want to
- 00:36:38generate the data that there is a
- 00:36:40transaction code yes a38 is a
- 00:36:43transaction port to generate
- 00:36:48reports
- 00:36:50to generate reports we are supposed to
- 00:36:53use the transaction rule yes a38 is a
- 00:36:56transaction for to generate reports
- 00:37:00as a security consultant our first job
- 00:37:04is Basis consultant and first job is to
- 00:37:07check whether sap is installed properly
- 00:37:10or not sap is installed properly or not
- 00:37:14but as a security consultant our first
- 00:37:16job is to check
- 00:37:27to check it standard user
- 00:37:32passwords that are changed or not as a
- 00:37:37security consultant our first job is to
- 00:37:40check whether standard user passwords
- 00:37:42that are changed or not
- 00:37:45this is our first job how to check
- 00:37:50how to check with the help of one report
- 00:37:53how to check with the help of one report
- 00:37:55we are supposed to check the standard
- 00:37:58user passports that are changed or not
- 00:38:01using
- 00:38:03report
- 00:38:04all the reports start with are yes
- 00:38:09or yes
- 00:38:13usr003 is the report to check whether
- 00:38:16standard user passwords that are changed
- 00:38:18or not
- 00:38:19who you are supposed to remember
- 00:38:23all the report starts with are
- 00:38:26s
- 00:38:28user what we are supposed to check
- 00:38:30standard user
- 00:38:33or you if you are supposed to think also
- 00:38:36you are supposed to think like this or
- 00:38:38indicates that report
- 00:38:39standard uses we have only three
- 00:38:43standard users
- 00:38:51you are supposed to remember like this
- 00:38:54as well report standard user
- 00:38:570 0 3 in the case three users three
- 00:39:00standard users sap ddac and levot if you
- 00:39:05want to generate this report if you want
- 00:39:07to generate this report first you need
- 00:39:09to execute yes a38 you need to execute
- 00:39:14SCA 38 and then you are supposed to type
- 00:39:19the report name
- 00:39:21rsusr003 and then execute how many
- 00:39:25clients are there in this particular
- 00:39:27server or in this particular instance
- 00:39:29system is going to be displayed each and
- 00:39:31every client for each and every client
- 00:39:34we have standard user specifics.dac
- 00:39:36these users are passwords that are
- 00:39:38changed or not we are supposed to check
- 00:39:40with the help of this report this is our
- 00:39:42first job what happens what happens if
- 00:39:46the standard user passwords that are not
- 00:39:48changed for your 800 client assume that
- 00:39:52you are you join in organization they
- 00:39:55provide your client number is 8 10 800
- 00:40:00this is your client number and again is
- 00:40:03this 800 you will you log in with the
- 00:40:05help of user ID and password and
- 00:40:08for this gate and the standard user
- 00:40:11Cosmos that are not changed what happens
- 00:40:14if we are not supposed to check whether
- 00:40:17this particular client standard user
- 00:40:19passwords that are not changed means
- 00:40:21everyone knows every consultant in each
- 00:40:25and every module knows that these are
- 00:40:27the standard users for these standard
- 00:40:29users this is the password sap standard
- 00:40:32user 0607 1992 is the password BDS is a
- 00:40:37standard user
- 00:40:391992-0706 is the password
- 00:40:41if we are not change the password for
- 00:40:44this particular standard users means
- 00:40:46there is a chance some users trying to
- 00:40:50log in with the help of sap star or with
- 00:40:52the help of tdac and there is a chance
- 00:40:55to commit a fraud and there is a chance
- 00:40:57to commit a crown so that's the reason
- 00:41:00we are supposed to check on regular
- 00:41:03intervals for every 15 days or for every
- 00:41:06week we are supposed to check whether
- 00:41:08this particular standard uses password
- 00:41:11standard user Cosmos that are changed or
- 00:41:13not how we are supposed to check with
- 00:41:16the help of this report RS user003 if
- 00:41:20you want to generate this report means
- 00:41:22first you need to execute sa38 then you
- 00:41:26are supposed to type the report name
- 00:41:28unless you assert003 and then execute f8
- 00:41:33is a shortcut key to exit mode and for
- 00:41:36this report you need to execute two
- 00:41:37types
- 00:41:40once if I'll do you will understand
- 00:41:43what is the report
- 00:41:46I want to generate reports how to check
- 00:41:48whether how to generate reports using sa
- 00:41:5238 is a transaction code whenever when
- 00:41:55you execute any transaction code
- 00:41:57whatever the options are there you need
- 00:41:59to identify here this is the option
- 00:42:02which are related to
- 00:42:04execute
- 00:42:06if you are using the same report means
- 00:42:08you are supposed to say like variate
- 00:42:11so these are the two execute execute
- 00:42:14with variant
- 00:42:17so program program is nothing but the
- 00:42:21report you are supposed to type the
- 00:42:23report name here once if you type the
- 00:42:25report name and then you are supposed to
- 00:42:27execute button click on execute
- 00:42:31what is the report to check whether
- 00:42:33standard user passwords that are changed
- 00:42:36or not RS USR zero zero three
- 00:42:41this is the report to check whether
- 00:42:43standard user passwords that are changed
- 00:42:46or not what happen if you are not
- 00:42:48supposed to change standard user
- 00:42:49password I there is a chance to commit
- 00:42:52abroad people can log in with standard
- 00:42:54users and followed by the standard
- 00:42:56password and it is a chance to committed
- 00:42:59who committed from
- 00:43:01sap star who is sap sir that we don't
- 00:43:04know
- 00:43:05so as a security consultant our first
- 00:43:09job is to check whether standard user
- 00:43:11passwords that are changed or not
- 00:43:15I assume that Here If You observe that
- 00:43:18triple zero sap sound ddac
- 00:43:21001 sap
- 00:43:23zero double six ddac early watch and sap
- 00:43:27star
- 00:43:28okay and other clients Here If You
- 00:43:32observe that password exists password
- 00:43:35for ddic password exists what is the
- 00:43:39password
- 00:43:391992 not seven not six password exists
- 00:43:43but password not trivial it indicates
- 00:43:46that someone changed the password it
- 00:43:50indication someone already changed the
- 00:43:52password
- 00:43:54if you scroll down you will find like
- 00:43:56this
- 00:43:59password well known followed by the
- 00:44:02password it indicator no one changed the
- 00:44:04password
- 00:44:05Here If You observe that in 800 clients
- 00:44:09ddac and sap sir ddic password is
- 00:44:15password 1992 not 7 or 6 12 no but even
- 00:44:20though if the password well known if you
- 00:44:23try to login with the help of Sab son or
- 00:44:25ddac it displays that log user is locked
- 00:44:29why because admin is going to be long
- 00:44:31how we are supposed to lock the user
- 00:44:33that with its recession for that user
- 00:44:36Administration and the time of use of
- 00:44:38administration we will discuss how to
- 00:44:39lock the users
- 00:44:41Okay so if you scroll down and observe
- 00:44:45that password exist means it this is
- 00:44:47locked by administrator
- 00:44:52if you scroll down in 812 client also
- 00:44:55you will find
- 00:45:01it indicates that if you try to log in
- 00:45:05with the help of 81 and then sap serve
- 00:45:08with password 0607 1992 it is very easy
- 00:45:11to login into the system why because
- 00:45:13that password is not locked and that
- 00:45:15password is not changed if you change
- 00:45:17the password means system is going to be
- 00:45:20displayed like this password exists but
- 00:45:23password not apply VL so it indicates a
- 00:45:26password someone already changed the
- 00:45:28password someone already changed the
- 00:45:30password as a security consultant about
- 00:45:33faster your visa to check the standard
- 00:45:36user passwords that are changed or not
- 00:45:40with the help of one reporter what is
- 00:45:42the report RS USR
- 00:45:44003 is the report to check whether
- 00:45:46standard user passwords that are changed
- 00:45:48or not
- 00:45:49and if you are supposed to generate this
- 00:45:52report means which decode you are
- 00:45:54supposed to execute first you need to
- 00:45:56execute S8 and then you are supposed to
- 00:45:59type the track report name and then you
- 00:46:01need to execute
- 00:46:09Google
- 00:46:11there is another report
- 00:46:14RS USR 0 0
- 00:46:186.
- 00:46:19this report displays that
- 00:46:23list of users
- 00:46:30you resource users
- 00:46:32lost logon information
- 00:46:39and password change
- 00:46:44list of users with the last logon
- 00:46:46information and password change this is
- 00:46:49report how you identify RS indicated
- 00:46:52report
- 00:46:53so if you want to generate the report
- 00:46:55say 38 and then
- 00:46:59type the report name
- 00:47:01rsusr006 and then execute
- 00:47:05and then execute
- 00:47:11so slash n
- 00:47:13s a 38
- 00:47:17RS qsr
- 00:47:19006
- 00:47:22and then execute
- 00:47:24list of users that are list of users
- 00:47:27according to lost log on date and
- 00:47:30password change
- 00:47:35here these are the users
- 00:47:42if it is stick in the case that already
- 00:47:44users change the password
- 00:47:47into indicate that user is not change
- 00:47:49the password whatever the password will
- 00:47:51be maintained at the time of creating
- 00:47:53this user so this is the use so password
- 00:47:57never change password the user didn't
- 00:47:59change the password till
- 00:48:03and this is a user also the thick
- 00:48:05indicator Cosmos data chain when this
- 00:48:08user login into the system this user is
- 00:48:10created by me on so and so that 26 11
- 00:48:142011 and user is login log on on the
- 00:48:17same date and this is the time and
- 00:48:22password is going to be saved on the
- 00:48:23same date
- 00:48:26and other users login into the system
- 00:48:29you will find last logon information and
- 00:48:32password change with the help of
- 00:48:36date of loss to log on and time of lost
- 00:48:39logger and whether password status it
- 00:48:44indicates that productive password means
- 00:48:46user change the password
- 00:48:48initial password mean whatever the
- 00:48:50password we created at the time of
- 00:48:51creating the user that password and
- 00:48:54this is the date of password change date
- 00:48:59password change date this is column
- 00:49:01indicates that password changed it so
- 00:49:04this is the report to check whether
- 00:49:08list of users lost logon information and
- 00:49:12password change
- 00:49:14so this today you'll learn I think seven
- 00:49:17transaction codes and a few commands and
- 00:49:21two reports
- 00:49:23another report is
- 00:49:30this is homework for you what is this
- 00:49:33report indication RS USR 007
- 00:49:41and
- 00:49:42for today demonstrations are completed
- 00:49:46foreign
- 00:49:52[Music]
- 00:50:00so practice try to practice
- 00:50:03whatever we discuss today
- 00:50:07these are the four I think five six
- 00:50:10seven seven transaction codes and four
- 00:50:13commands and two reports
- 00:50:15okay we'll stop
- 00:50:20what is the standard possible for 808
- 00:50:25standard password
- 00:50:27user right
- 00:50:32okay foreign
- 00:50:50[Music]
- 00:51:04[Music]
- 00:51:14so we are supposed to suppose if I try
- 00:51:18to log in
- 00:51:19suppose if I try to login with 812 ddic
- 00:51:23client it is automatically login
- 00:51:34if I click on enter
- 00:51:37easily enter into the system and if You
- 00:51:41observe that here in status mode this is
- 00:51:43812 okay
- 00:51:46[Applause]
- 00:51:55that we are supposed to
- 00:51:58we are not supposed to
- 00:52:00okay everyone can write it so
- 00:52:03so it is somewhat difficult to find who
- 00:52:05is and who is this episode so that's the
- 00:52:08reason as a security consultant our
- 00:52:10first job and all regular intervalences
- 00:52:13we are supposed to check whether this
- 00:52:15report honest yourself
- 00:52:18okay okay okay
- 00:52:21any of those still know
- 00:52:27yes yes you should only change the
- 00:52:29password at the time of user
- 00:52:31Administration how to change the
- 00:52:33password that we will explain
- 00:52:40those are the ideas that is our work
- 00:52:42that is not basis
- 00:52:45security only
- 00:52:47creating the user's modification of
- 00:52:49users these are down comes under the
- 00:52:52security controller
- 00:52:53and creating the rules and assigning the
- 00:52:56roles user this around comes under the
- 00:52:58security module
- 00:53:04yes
- 00:53:07okay we will stop
- 00:53:12okay thank you so it's a small lotion
- 00:53:15yes yes yes so the standard users are
- 00:53:18there right yes yes sir who is going to
- 00:53:21control those standard users
- 00:53:23control in the sense modification of the
- 00:53:26passwords yeah modification of the
- 00:53:27passwords that is our job
- 00:53:31for every client we need to change yes
- 00:53:34for each and every client we need to
- 00:53:35change
- 00:53:50to our managers or to our team lead so
- 00:53:54stating that this is the these are the
- 00:53:56users so we need to change reset the
- 00:53:59password for these users
- 00:54:00so they provide you access or they are
- 00:54:02supposed to change the password
- 00:54:06if you are not change means there is a
- 00:54:08chance to commit abroad users can login
- 00:54:10into these standard users and then there
- 00:54:12is a transformative product even though
- 00:54:14if it is to whether information they are
- 00:54:17supposed to execute the report and or
- 00:54:19that they are supposed to execute any
- 00:54:21browse any table and then they check
- 00:54:23that one they are supposed to take the
- 00:54:25snapshots for those even though if it is
- 00:54:28display mode as well yeah then there is
- 00:54:31a chance to commit a corner
- 00:54:46which one
- 00:54:50oh
- 00:54:53yeah that is someone it is a bit
- 00:54:56difficult
- 00:55:01yes yes yes yes
- 00:55:03user laws are there but it is some more
- 00:55:05difficult to find who is going to be the
- 00:55:07more uh interchangements
- 00:55:10these are all about the personal laptops
- 00:55:12so we are using uh our names and nothing
- 00:55:14but in say
- 00:55:16I mean in real time they won't number
- 00:55:19kind of thing So based on that there is
- 00:55:22a chances who is going to be modified
- 00:55:24that who is going to be logging into the
- 00:55:25system there is H1 but it is somewhere
- 00:55:27difficult
- 00:55:30if you take the snapshot means whether
- 00:55:33it is not possible writer
- 00:55:36login
- 00:55:39checks are there but
- 00:55:42it is somewhat difficult to trace what
- 00:55:45actually floating is going to be
- 00:55:46happening and what a transaction was
- 00:55:49executed also we are supposed to replace
- 00:55:51record as well
- 00:55:55okay we will stop
- 00:55:59we don't have any like alarm type
- 00:56:02whenever we are going to login with
- 00:56:04standard users then we can easily Trace
- 00:56:07out right there yes yes no we don't have
- 00:56:10that kind of
- 00:56:11foreign
- SAP
- transaction codes
- security
- user management
- server activity
- session management
- reports
- password change
- installation check
- navigation commands