Security management, system audits, hardening and monitoring
Responsibility
To display custom tiles based on catalogues and groups when the launchpad starts, permissions are placed in the menu of the underlying role. This makes it possible to ensure that every user on the launchpad can only see and open their applications. Open Launchpad permissions SAP provides default roles for opening the Fiori Launchpad. This distinguishes between the Fiori permissions to start the launchpad normally and to manage the user interface.
SAP Hosting should not be thought of as an off-the-peg suit, but as a made-to-measure suit. For mid-sized companies in particular, it is crucial to first identify corporate goals, technical conditions of the IT architecture and individual requirements. During this planning phase, added value and potential savings can also be identified.
Operations
In addition to internal security requirements, national and international guidelines sometimes require all audit and security-related user actions to be recorded. With the Security Audit Log (SAL) you have the possibility to log all changes, e.g. for users, user master records, but also roles and groups.
There is no way around containers, and even SAP will soon have to reorient itself here and allow the NetWeaver stack to be run in containers. There are many indications that Kubernetes will win the battle for supremacy among container management tools. SAP has also already invested in Gardener and is also intensifying its partnerships with IBM and Red Hat Openshift.
Tools such as "Shortcut for SAP Systems" complement missing functions in the SAP basis area.
There is always one SPAM update per review that will be updated over time.
Information on the recommendation can be found in the Master's thesis in chapters 7.8 and 9.6.