- Home
- Product Portfolio
- FAQ
- Your SAP Resource
- Current Customers
- Technical Support
- Product Alerts
- Contact Us
Session Descriptions
Click on the session title to view description.
How to define a comprehensive security strategy for your SAP NetWeaver architecture
An overview of security options available for enterprise service-oriented architecture
A comprehensive introduction to SAP NetWeaver Identity Management
A proven procedure for identifying and overcoming common portal runtime challenges
Tips and tricks to optimize and secure your SAP NetWeaver Mobile implementation
How to define a comprehensive security strategy for your SAP NetWeaver architecture
When it comes to IT implementation and upgrade project budgets and timelines, security considerations often take a back seat. The result? A landscape with some components that are secure, others that aren’t, and development teams who don’t really understand what a comprehensive security strategy entails. This session helps you apply the Payment Card Industry Data Security Standard 1.1 (PCI DSS) as a framework for securing your SAP NetWeaver environment. Watch this session to:
- See how PCI DSS provides an excellent (and free!) foundation for putting a sound security strategy in place, from firewalls to encryption to periodic testing of your security controls.
- Identify key transactions and security frameworks in the SAP NetWeaver environment that can be used for certificate-based authentication and role configuration.
- Find out how technical infrastructure design can either enhance or short-circuit your software-based security protections.
- Gain insight into information classification schemes used by your peers at other companies to standardize security requirements, such as encryption-in-transit and encryption-at-rest.
- Determine whether these requirements are best addressed within or outside the SAP NetWeaver environment.
An A-to-Z guide on how to develop a flexible position-based security model for SAP NetWeaver Business Intelligence
Obtain instructions for creating a more efficient, flexible, and easy-to-maintain SAP NetWeaver Business Intelligence (SAP NetWeaver BI) security environment. Watch this session to:
- Get insight into the dos and don’ts for creating flexible position-based roles for SAP NetWeaver BI.
- Learn how to set up SAP NetWeaver BI Query User, Power User, and Developer role sets with dynamic subject areas.
- Identify the pros and cons of utilizing SAP-delivered roles.
- See how to use security to control the creation of queries through the use of menu folders.
- See specific techniques for implementing query creation models that offer all the benefits of an open system environment without completely ceding control of your ad hoc queries.
- Understand how to leverage your organizational hierarchy to allocate security roles to positions rather than directly assigning roles/profiles to user IDs.
- Identify the benefits in assigning roles using this methodology including how updates can be made to reflect position, departmental, or job level changes.
Options, strategies, and best practices for migrating to and using SAP NetWeaver Business Intelligence 7.0 authorization concepts
Understand the key steps, prerequisites, and challenges of migrating to the new reporting and analysis authorizations concept. Watch this session to:
- Find out why it’s essential to complete this migration shortly after your SAP NetWeaver Business Intelligence (SAP NetWeaver BI) 7.0 upgrade.
- Gain insight into how to convert existing security objects, configurations, and settings to the new authorization concept.
- Learn how the authorization functionality in SAP NetWeaver BI 7.0 differs from the functionality in SAP® BW 3.x — e.g., new ways to secure data at the InfoCube and InfoObject level versus the flexible enterprise-wide user accessibility: the use of 0BI_ALL.
- Pinpoint and avoid key security issues that can arise during a migration, such as incorrect role updates from or unintentional unauthorized access to data when queries are executed.
- Walk through the migration of an SAP BW 3.x authorization object created under transaction RSSM and understand how the migration impacts a role’s configuration after the migration steps are carried out.
An overview of security options available for enterprise service-oriented architecture
This session provides an overview of security requirements and solutions available to address them in an enterprise service-oriented architecture (enterprise SOA). The evolution from system-based security requirements to scenario-based enterprise SOA warrants a specific look at the security solutions supported by SAP NetWeaver as the service platform for enterprise SOA and Business Process Management. Watch this session to:
- Learn about options for using authentication, single sign-on (SSO), cryptographic functions and transport security to address enterprise SOA security challenges.
- Get up to speed on industry standards that SAP NetWeaver follows to provide security in enterprise SOA like SAML, SPML, WS Security, and WS Reliable Messaging.
- Get a clear understanding of your options for securing an enterprise SOA and achieving important security goals like confidentiality, integrity, non-repudiation, and availability.
A comprehensive introduction to SAP NetWeaver Identity Management
Explore the capabilities of SAP NetWeaver Identity Management and determine whether it could help your company centrally manage identities and ensure consistent security across SAP and non-SAP systems and business processes. Watch this session to:
- Delve into SAP NetWeaver Identity Center architectural components that are used to enable provisioning, synchronization, event management, workflow, and monitoring.
- Gain insight into expanded account provisioning capabilities, such as user self-services for simple tasks like password resets.
- Find out how the workflow module of the Identity Center can be used to route user requests to the appropriate manager for approval before access is granted.
- Step through a demo of key SAP NetWeaver Identity Management scenarios.
- Get a sneak peek into the future roadmap and enhancements planned for SAP NetWeaver Identity Management.
Expert instruction for configuring security in the dual ABAP and Java environment of SAP NetWeaver Process Integration
SAP teams who work primarily in either ABAP™ or Java environments will learn the ins and outs of configuring security in the dual ABAP and Java infrastructure that enables SAP NetWeaver Process Integration (SAP NetWeaver PI). Watch this session to:
- See a demo of key steps required to configure role-based security in SAP NetWeaver PI, including how to get started with delivered, out-of-the-box roles.
- Identify and learn how to fix the critical security gaps that may expose your SAP NetWeaver PI environment to unauthorized access and risk.
- Learn how to use security features in the SAP NetWeaver Application Server Java engine, such as logs, to pinpoint authorization errors that may not show up in ABAP transactions.
- Bonus! A list of the development, QA, and production roles, along with best practices for how to properly assign authorizations to specific roles are available in your appendix files
Keeping your SAP NetWeaver Portal afloat after go-live: Expert advice for avoiding common, ongoing maintenance challenges
The complex interactions between all the components and systems in an SAP NetWeaver Portal landscape, the flood of content you’ll need to manage, and the inevitable push for universal accessibility all mean one thing: You need continuous support and a solid maintenance program in order to keep your portal afloat. Watch this session to:
- Identify the key activities you must execute to ensure your portal’s availability and keep maintenance to a manageable level.
- Explore best practices for ensuring high user adoption.
- Determine the members you must include on your post-go-live portal administration team, and take away a proven model for building a successful portal management and governance body.
- Learn how SAP NetWeaver integration and enterprise service-oriented architecture (enterprise SOA) could simplify support of your portal and the back-end systems on which the portal depends.
Dramatically reduce your portal administration workload by using a Central User Agent (CUA) service to create and maintain user roles
Determine if and how the use of a Central User Agent (CUA) service could help you reduce the effort required to create and maintain portal user roles, as well as better synchronize portal roles with corresponding back-end system roles. Watch this session to:
- Learn how a CUA service can be used to automatically transfer roles from your SAP ERP system directly to your SAP NetWeaver Portal-based employee self-service environment.
- Explore the system prerequisites and implementation requirements for a CUA service.
- Examine the difference between Flat versus Deep and Read-Only versus Rewrite data stores, and understand which stores to use in database, ABAP, and LDAP security environments.
- See how to use Excel and the User Management Engine (UME) to mass upload user information into the portal and automatically notify users when their portal accounts are ready for use.
- Learn how to detect and resolve common UME issues, such as invalid passwords, switching UME providers, and enabling secure connections to the UME.
A proven procedure for identifying and overcoming common portal runtime challenges
Acquire expert recommendations for how to troubleshoot runtime glitches that could jeopardize SAP NetWeaver Portal performance. Watch this session to:
- Gain an understanding of how to pinpoint, analyze, and resolve errors such as portal start-up issues, DNS issues, and performance dumping.
- Evaluate the tools that will help you diagnose portal problems, such as Visual Administrator, J2EE Configuration Tool, Solution Manager Diagnostics, SAP NetWeaver Administrator, Portal Log Viewer, and GC Log Viewer.
- See how to use SAP NetWeaver Administrator and Solution Manager Diagnostics to get a real-time view of landscape conditions that could be affecting your portal, and to reduce the amount of time you spend hunting for the cause of the error.
- Learn how to detect and prevent user session dumping that may occur if the portal Java runtime runs out of memory.
- Bonus! A decision tree for how to choose the right diagnostic tools, or combination of tools, along with a list of key areas to check first when trouble arises are available in your course book.
Case study: How Whirlpool Corporation administers and secures the SAP NetWeaver Portal Content Directory
Discover how Whirlpool Corporation organizes and administers user roles within the SAP NetWeaver Portal Content Directory (PCD) in order to preserve SAP’s default content and prevent unauthorized modification of the PCD. Watch this session to:
- Find out how Whirlpool gave its development teams sufficient authorization to efficiently execute their portal projects without exposing other areas of the portal to potential manipulation and corruption.
- Learn how Whirlpool assigns “safe” administration capabilities so that developers can access what they need without constantly interrupting the portal administrator.
- See how Whirlpool assigns the roles it has created to testers in the development environment without granting access to roles that are not a part of their own project.
- Gain insight into how and why the company gave developers the ability to create their own transports and exports while blocking their ability to import external packages.
- Walk through Whirlpool’s steps for configuring the portal so that developers could control and administer the contents of their own PCD folder.
Improve SAP NetWeaver Portal security using single sign-on and an X.509-based public key infrastructure
Determine if and how single sign-on (SSO) and an X.509-based public key infrastructure (PKI) could properly secure critical, back-end transactions and data that feed your SAP NetWeaver Portal and protect it from unauthorized external access. Watch this session to:
- Examine the implementation and configuration requirements for SSO, such as the configuration of the portal login stack and exchange of credentials with other trusted systems.
- Obtain recommendations for how to avoid common SSO pitfalls, including a lack of SSO integration for legacy systems accessed from the portal.
- Find out when to use an X.509-based PKI as an authentication mechanism for your portal to provide users with seamless access to back-end SAP systems.
- Step through an example of how to set up SSO in the portal and identify the amount of customization that may be required.
- See how to utilize SAP Logon Tickets and third-party tools to authenticate the user to your portal and all of your backend systems.
- Learn how the portal end-user experience could be improved with SSO and X.509-based PKI.
Tips and tricks to optimize and secure your SAP NetWeaver Mobile implementation
Delve into the key security and performance elements of an SAP NetWeaver Mobile implementation including architecture options, encryption methodologies, and back-end "sync" interface configurations. Watch this session to:
- Get expert advice on major implementation challenges, such as SSL standardization and reverse proxy integration within a DMZ environment, and learn how to address these challenges before it’s too late or costly to resolve.
- Gain insight into building an optimal architecture and network deployment that could reduce connectivity bottlenecks, yet still allow for robust security and system integrity.
- Benefit from critical learning points in the areas of failover planning, stress and volume testing, and load balancing of the middleware application.
- Explore the benefits of the new SAP NetWeaver Mobile 7.1 platform.
- Empower your SAP NetWeaver Mobile implementation to facilitate timely and smooth rollouts to field personnel around the globe.
- Bonus! A list of database and connectivity parameters for your SAP NetWeaver Mobile implementation is available in your course book.