Pages

Download SAP Certification Material for FREE @ http://sap-ebooks-den.blogspot.com

Friday, January 7, 2011

Checklists - Superuser privilege management (Firefighter)

Pre-Implementation Checklist

-> Access Enforcer installation contains two parts:

1) Firefighter Java Front End Package;

2) Firefighter RTA (Real Time Agent).

-> It is imperative to make sure that all the pre-requisites are satisfied before beginning the installation process.

-> Download the Java front end package as well as the Real-Time Agents (RTA) from the SAP Service Marketplace for the appropriate SAP backend R/3 or mySAP ERP systems. For further details, please refer to the Product Availability Matrix (PAM) located on SAP Service Marketplace. Please note that the Access Controls RTA needs to be only installed if it has not been already installed with another Access Controls module (e.g. Compliance Calibrator).

-> Install the non-HR RTA on the backend SAP R/3 or mySAP ERP systems if the RTA is already not installed.

-> Install the HR RTA if there is an HR component in the system (Check in SPAM transaction in the ABAP stack for the HR component) if the RTA is already not installed.

-> Deploy all the files as per the installation guide and refer SAP Notes 723909 and 723562.

Post Installation Checklist

-> Confirm deployment of FF 5.2 files, which include the NetWeaver database, J2EE Library and UME Actions and Permissions on SAP WAS 6.40 or above.

-> Confirm the installation of the FF 5.2 RTA on the target system. This includes the installation of both HR and non-HR RTAs for the SAP-HR system and only the non-HR RTA for SAP systems without an HR component.

-> Create a role in the UME for all FF actions (all actions of the pattern FF.*).

-> Confirm the status of NetWeaver J2EE Server as Running from http://:500/index.html

(NetWeaver SLD home)> Technical Landscape> Administration.

-> Test the SLD Connection from

http://:500/

(NetWeaver Home)> Web Dynpro > Content Administrator.

-> Test each of the JCo Connections from

http://:500/

(NetWeaver Home)> Web Dynpro > Content Administrator > Maintain JCo Destinations.

-> Validate a connector in Firefighter by logging on to the system. Go to the Configuration Tab> Connectors> Search.

-> Create an individual role for the Firefighter Administrator.

-> Connect a stand-alone J2EE System to the Remote SAP Server only if you have a stand-alone J2EE installation.

-> Configuring Firefighter at the SAP Backend

-> Log on to the SAP Backend System.

-> Run SU01 according to three basic roles

/VIRSA/Z_VFAT_ADMINISTRATOR (Firefighter Administrator),

/VIRSA/Z_VFAT_ID_OWNER (Firefighter ID owner) and

/VIRSA/Z_VFAT_FIREFIGHTER (Firefighter ID).

-> Run /VIRSA/ZVFAT to open the Firefighter Dashboard.

-> Validate the configuration of various parameters used by Firefighter through the Firefighter Dashboard. These include Remote Function Calls (RFCs), Critical Transaction Table from Compliance Calibrator (VRAT), Send Firefighter ID Login Notification, Firefighter Owner Additional Authorization, Retrieve Change Log and Firefighter Controller Additional

Authorization.

-> For configuring User Exit in FF, please refer SAP Note: 992200.

No comments:

Post a Comment

Related Posts Plugin for WordPress, Blogger...