Determine if and how the use of a Central User Agent (CUA) service could help you reduce the effort required to create and maintain portal user roles, as well as better synchronize portal roles with corresponding back-end system roles.

• Learn how a CUA service can be used to automatically transfer roles from your SAP® ERP system directly to your SAP NetWeaver Portal-based employee self-service environment.
• Explore the system prerequisites and implementation requirements for a CUA service.
• Examine the difference between Flat versus Deep and Read-Only versus Rewrite data stores, and understand which stores to use in database, ABAP, and LDAP security environments.
• See how to use Excel and the User Management Engine (UME) to mass upload user information into the portal and automatically notify users when their portal accounts are ready for use.
• Learn how to detect and resolve common UME issues, such as invalid passwords, switching UME providers, and enabling secure connections to the UME.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Eric Johnson, Capgemini

Understand the key steps, prerequisites, and challenges of migrating to the new reporting and analysis authorizations concept.

• Find out why it's essential to complete this migration shortly after your SAP NetWeaver Business Intelligence (SAP NetWeaver BI) 7.0 upgrade.
• Gain insight into how to convert existing security objects, configurations, and settings to the new authorization concept.
• Learn how the authorization functionality in SAP NetWeaver BI 7.0 differs from the functionality in SAP BW 3.x — e.g., new ways to secure data at the InfoCube and InfoObject level versus the flexible enterprise-wide user accessibility: the use of 0BI_ALL.
• Pinpoint and avoid key security issues that can arise during a migration, such as incorrect role updates from or unintentional unauthorized access to data when queries are executed.
• Walk through the migration of an SAP BW 3.x authorization object created under transaction RSSM and understand how the migration impacts a role's configuration after the migration steps are carried out.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Tracey Brookes, Sapient Corp

When it comes to IT implementation and upgrade project budgets and timelines, security considerations often take a back seat. The result? A landscape with some components that are secure, others that aren't, and development teams who don't really understand what a comprehensive security strategy entails. This session helps you apply the Payment Card Industry Data Security Standard 1.1 (PCI DSS) as a framework for securing your SAP NetWeaver environment.

• See how PCI DSS provides an excellent (and free!) foundation for putting a sound security strategy in place, from firewalls to encryption to periodic testing of your security controls.
• Identify key transactions and security frameworks in the SAP NetWeaver environment that can be used for certificate-based authentication and role configuration.
• Find out how technical infrastructure design can either enhance or short-circuit your software-based security protections.
• Gain insight into information classification schemes used by your peers at other companies to standardize security requirements, such as encryption-in-transit and encryption-at-rest.
• Determine whether these requirements are best addressed within or outside the SAP NetWeaver environment.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Dan King, Capgemini

Obtain instructions for creating a more efficient, flexible, and easy-to-maintain SAP NetWeaver Business Intelligence (SAP NetWeaver BI) security environment.

• Get insight into the dos and don'ts for creating flexible position-based roles for SAP NetWeaver BI.
• Learn how to set up SAP NetWeaver BI Query User, Power User, and Developer role sets with dynamic subject areas.
• Identify the pros and cons of utilizing SAP-delivered roles.
• See how to use security to control the creation of queries through the use of menu folders.
• See specific techniques for implementing query creation models that offer all the benefits of an open system environment without completely ceding control of your ad hoc queries.
• Understand how to leverage your organizational hierarchy to allocate security roles to positions rather than directly assigning roles/profiles to user IDs.
• Identify the benefits in assigning roles using this methodology including how updates can be made to reflect position, departmental, or job level changes.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Tracey Brookes, Sapient Corp

Delve into the key security and performance elements of an SAP NetWeaver Mobile implementation including architecture options, encryption methodologies, and back-end "sync" interface configurations.

• Get expert advice on major implementation challenges, such as SSL standardization and reverse proxy integration within a DMZ environment, and learn how to address these challenges before it's too late or costly to resolve.
• Gain insight into building an optimal architecture and network deployment that could reduce connectivity bottlenecks, yet still allow for robust security and system integrity.
• Benefit from critical learning points in the areas of failover planning, stress and volume testing, and load balancing of the middleware application.
• Explore the benefits of the new SAP NetWeaver Mobile 7.1 platform.
• Empower your SAP NetWeaver Mobile implementation to facilitate timely and smooth rollouts to field personnel around the globe.
• Take home a list of database and connectivity parameters for your SAP NetWeaver Mobile implementation.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Michael Harding, ESA Integration Solutions

This session provides an overview of security requirements and solutions available to address them in an enterprise service-oriented architecture (enterprise SOA). The evolution from system-based security requirements to scenario-based enterprise SOA warrants a specific look at the security solutions supported by SAP NetWeaver as the service platform for enterprise SOA and Business Process Management.

• Learn about options for using authentication, single sign-on (SSO), cryptographic functions and transport security to address enterprise SOA security challenges.
• Get up to speed on industry standards that SAP NetWeaver follows to provide security in enterprise SOA like SAML, SPML, WS Security, and WS Reliable Messaging.
• Get a clear understanding of your options for securing an enterprise SOA and achieving important security goals like confidentiality, integrity, non-repudiation, and availability.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Serge Muts, SAP Labs

Explore the capabilities of SAP NetWeaver Identity Management and determine whether it could help your company centrally manage identities and ensure consistent security across SAP and non-SAP systems and business processes.

• Delve into SAP NetWeaver Identity Center architectural components that are used to enable provisioning, synchronization, event management, workflow, and monitoring.
• Gain insight into expanded account provisioning capabilities, such as user self-services for simple tasks like password resets.
• Find out how the workflow module of the Identity Center can be used to route user requests to the appropriate manager for approval before access is granted.
• Step through a demo of key SAP NetWeaver Identity Management scenarios.
• Get a sneak peek into the future roadmap and enhancements planned for SAP NetWeaver Identity Management.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Serge Muts, SAP Labs

SAP teams who work primarily in either ABAP™ or Java environments will learn the ins and outs of configuring security in the dual ABAP and Java infrastructure that enables SAP NetWeaver Process Integration (SAP NetWeaver PI).

• See a demo of key steps required to configure role-based security in SAP NetWeaver PI, including how to get started with delivered, out-of-the-box roles.
• Take home a list of the development, QA, and production roles that every SAP NetWeaver PI team needs, along with best practices for how to properly assign authorizations to specific roles.
• Identify and learn how to fix the critical security gaps that may expose your SAP NetWeaver PI environment to unauthorized access and risk.
• Learn how to use security features in the SAP NetWeaver Application Server Java engine, such as logs, to pinpoint authorization errors that may not show up in ABAP transactions.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Dan King, Capgemini

The complex interactions between all the components and systems in an SAP NetWeaver Portal landscape, the flood of content you'll need to manage, and the inevitable push for universal accessibility all mean one thing: You need continuous support and a solid maintenance program in order to keep your portal afloat.

• Identify the key activities you must execute to ensure your portal's availability and keep maintenance to a manageable level.
• Explore best practices for ensuring high user adoption.
• Determine the members you must include on your post-go-live portal administration team, and take home a proven model for building a successful portal management and governance body.
• Hear how SAP NetWeaver integration and enterprise service-oriented architecture (enterprise SOA) could simplify support of your portal and the back-end systems on which the portal depends.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Rizwan Uqaili, Fujitsu Consulting

Acquire expert recommendations for how to troubleshoot runtime glitches that could jeopardize SAP NetWeaver Portal performance.

• Gain an understanding of how to pinpoint, analyze, and resolve errors such as portal start-up issues, DNS issues, and performance dumping.
• Evaluate the tools that will help you diagnose portal problems, such as Visual Administrator, J2EE Configuration Tool, Solution Manager Diagnostics, SAP NetWeaver Administrator, Portal Log Viewer, and GC Log Viewer.
• See how to use SAP NetWeaver Administrator and Solution Manager Diagnostics to get a real-time view of landscape conditions that could be affecting your portal, and to reduce the amount of time you spend hunting for the cause of the error.
• Learn how to detect and prevent user session dumping that may occur if the portal Java runtime runs out of memory.
• Take home a decision tree for how to choose the right diagnostic tools, or combination of tools, along with a list of key areas to check first when trouble arises.

Features

• Versions covered: SAP NetWeaver 7.0
• Session presented by: Eric Johnson, Capgemini