Master Guide

SAP GRC Access Control

Using SAP with Release 5.3
Target Audience System administrators Technology consultants

Document Version 1.01 - February 15, 2008

SAP AG Dietmar-Hopp-Allee 16 69190 Walldorf Germany T +49/18 05/34 34 34 F +49/18 05/34 34 20 www.sap.com

Copyright 2008 SAP AG, All rights reserved. No part of this publication may be reproduced or transmitted in any form or for any purpose without the express permission of SAP AG. The information contained herein may be changed without prior notice. Some software products marketed by SAP AG and its distributors contain proprietary software components of other software vendors. Microsoft, Windows, Outlook, and PowerPoint are registered trademarks of Microsoft Corporation. IBM, DB2, DB2 Universal Database, OS/2, Parallel Sysplex, MVS/ESA, AIX, S/390, AS/400, OS/390, OS/400, iSeries, pSeries, xSeries, zSeries, z/OS, AFP, Intelligent Miner, WebSphere, Netfinity, Tivoli, Informix, i5/OS, POWER, POWER5, OpenPower and PowerPC are trademarks or registered trademarks of IBM Corporation. Adobe, the Adobe logo, Acrobat, PostScript, and Reader are either trademarks or registered trademarks of Adobe Systems Incorporated in the United States and/or other countries. Oracle is a registered trademark of Oracle Corporation.

MaxDB is a trademark of MySQL AB, Sweden. SAP, R/3, mySAP, mySAP.com, xApps, xApp, SAP NetWeaver, and other SAP products and services mentioned herein as well as their respective logos are trademarks or registered trademarks of SAP AG in Germany and in several other countries all over the world. All other product and service names mentioned are the trademarks of their respective companies. Data contained in this document serves informational purposes only. National product specifications may vary. These materials are subject to change without notice. These materials are provided by SAP AG and its affiliated companies ("SAP Group") for informational purposes only, without representation or warranty of any kind, and SAP Group shall not be liable for errors or omissions with respect to the materials. The only warranties for SAP Group products and services are those that are set forth in the express warranty statements accompanying such products and services, if any. Nothing herein should be construed as constituting an additional warranty.

Disclaimer UNIX, X/Open, OSF/1, and Motif are registered trademarks of the Open Group. Citrix, ICA, Program Neighborhood, MetaFrame, WinFrame, VideoFrame, and MultiWin are trademarks or registered trademarks of Citrix Systems, Inc. Any Java Source Code delivered with this product is only to be used HTML, XML, XHTML and W3C are trademarks or registered trademarks of W3C, World Wide Web Consortium, Massachusetts Institute of Technology. Java is a registered trademark of Sun Microsystems, Inc. JavaScript is a registered trademark of Sun Microsystems, Inc., used under license for technology invented and implemented by Netscape. Documentation in the SAP Service Marketplace You can find this documentation at the following Internet address:
service.sap.com/instguides

Some components of this product are based on Java. Any code change in these components may cause unpredictable and severe malfunctions and is therefore expressively prohibited, as is any decompilation of these components.

by SAPs Support Services and may not be modified or altered in any way.

Typographic Conventions
Type Style Example Text Represents Words or characters that appear on the screen. These include field names, screen titles, pushbuttons as well as menu names, paths and options. Cross-references to other documentation Example text Emphasized words or phrases in body text, titles of graphics and tables Names of elements in the system. These include report names, program names, transaction codes, table names, and individual key words of a programming language, when surrounded by body text, for example, SELECT and INCLUDE. Screen output. This includes file and directory names and their paths, messages, names of variables and parameters, source code as well as names of installation, upgrade and database tools. Exact user entry. These are words or characters that you enter in the system exactly as they appear in the documentation. Variable user entry. Pointed brackets indicate that you replace these words and characters with appropriate entries. Keys on the keyboard, for example, function keys (such as F2) or the ENTER key.

Icons
Icon Meaning Caution Example Note Recommendation Syntax

EXAMPLE TEXT

Example text

Example text

<Example text>

EXAMPLE TEXT

Master Guide GRC Access Control 5.3

Document History
The Master Guide is regularly updated in SAP Service Marketplace at service.sap.com/instguides. Make sure you have the latest version of the Master Guide by checking SAP Service Marketplace immediately before starting the installation. The following table provides an overview of the most important changes that were made in the latest versions. Master Guide Version 1.00 January 28, 2008 Important Changes First release of GRC Access Control 5.3 application including the following functionality: Compliant User Provisioning, Enterprise Role Management, Risk Analysis and Remediation, and Superuser Privilege Management. Added support packages for 530_46C, 530_620, 530_640, and 530_700 to Important SAP Notes section 1.3.

1.0.1 February 15, 2008

4 Access Control 5.3 Master Guide

February 2008

2 SAP GRC Access Control Overview Document History

Table of Contents
Chapter 1
1.1 1.2 1.2.1 1.2.2 1.3 1.4

Getting Started .............................................................................. 6

About this Document..................................................................................................6 Related Information....................................................................................................7 Planning Information ..................................................................................................7 SAP Service Marketplace Links ..................................................................................8 Important SAP Notes..................................................................................................8 GRC Access Control Documentation ..........................................................................9

Chapter 2
2.1 2.1.1 2.2 2.3

SAP GRC Access Control Overview ............................................ 10

Software Component Matrix.....................................................................................11 Access Control 5.3 Compatibility..............................................................................11 Technical System Landscape ....................................................................................12 Overall Implementation Sequence.............................................................................15

Chapter 3 Appendix A
A1

Solution-Wide Topics .................................................................. 16 Main SAP Documentation Types..................................................... 17

Cross-Phase Documentation .....................................................................................17 SAPterm...................................................................................................................17 SAP Library .............................................................................................................18 Implementation Guide (IMG) ...................................................................................18 Security Guide..........................................................................................................18 Implementation Phase...............................................................................................19 Master Guide ............................................................................................................19 Component Installation Guide...................................................................................19 Configuration Documentation in SAP Solution Manager ...........................................19 Production Operation Phase ......................................................................................20 Solution Operation Guide .........................................................................................20 Upgrade Phase..........................................................................................................21 Upgrade Master Guide..............................................................................................21 Component Upgrade Guide.......................................................................................21 Release Notes ...........................................................................................................21

A2

A3

A4

February 2008

1.1 About this Document

1 Getting Started
SAP GRC Access Control is an enterprise application that provides end-to-end automation for documenting, detecting, remediating, mitigating, and preventing access and authorization risk enterprise wide, resulting in proper segregation of duties, lower costs, reduced risk, and better business performance. The Access Control application includes the following capabilities: Risk Analysis and Remediation, which supports real-time compliance to detect, remove, and prevent access and authorization risk by preventing security and control violations before they occur. Compliant User Provisioning, which automates provisioning, tests for SoD risks, and streamlines approvals to the appropriate business approvers to unburden IT staff and provide a complete history of user access. Enterprise Role Management, which standardizes and centralizes role creation and maintenance. Superuser Privilege Management, which enables users to perform emergency activities outside their roles as a privileged user in a controlled and auditable environment. SAP GRC solutions help companies comply with the Sarbanes-Oxley Act and other regulatory mandates by enabling organizations to rapidly identify and remove authorization risks from IT systems. Access Control allows preventive controls be embedded into business processes to identify and prevent future SoD violations from being introduced without proper approval and mitigation.

1.1 About this Document

This Master Guide is the central starting point for the technical implementation of SAP GRC Access Control including Risk Analysis and Remediation, Compliant User Provisioning, Enterprise Role Management, and Superuser Privilege Management. Use the Master Guide to get an overview of SAP GRC Access Control, software units, and its scenarios from a technical perspective. The Master Guide is a planning tool that helps you to design your GRC Access Control system landscape. It refers you to the required detailed documentation: Installation guides for single software components, SAP Notes, Configuration documentation, SAP Library documentation. For a general overview of the available SAP documentation, see The Main SAP Documentation Types. The Master Guide contains the following main sections: Getting Started This section contains information about using this document, reference documentation, and related information (SAP Notes) crucial to the installation and add-on. Access Control Overview This section contains information about the technical system landscape, software components, and implementation steps. Solution-Wide Topics This chapter provides a summary of the required shared services for implementation.

6 Access Control 5.3 Master Guide

February 2008

1.2 Related Information

You can find the most current information about the technical implementation of SAP GRC Access Control, and the latest installation and configuration guides on SAP Service Marketplace at service.sap.com/instguides. We strongly recommend that you use the documents available here. The guides are regularly updated.

1.2 Related Information

This section describes useful topics for planning. Links to useful reference documentation found on SAP Service Marketplace is also provided.

1.2.1 Planning Information

For more information about planning topics not covered in this guide, see the following content on SAP Service Marketplace: Content Latest versions of installation and upgrade guides General information about applications/solutions and business scenarios SAP Business Maps - information about applications and business scenarios Sizing, calculation of hardware requirements such as CPU, disk and memory resource Location on SAP Service Marketplace service.sap.com/instguides service.sap.com/businessmaps service.sap.com/businessmaps service.sap.com/; for sizing whitepaper visit https://service.sap.com/~sapidb/01 1000358700000435122007E service.sap.com/platforms To access the Platform Availability Matrix directly, enter service.sap.com/pam. service.sap.com/securityguide service.sap.com/ha service.sap.com/performance service.sap.com/sp-stacks

Released platforms and technology-related topics such as maintenance strategies and language support Network security High Availability Performance Information about Support Package Stacks, latest software versions and patch level requirements Information about Unicode technology

service.sap.com/unicode@sap

February 2008

1.3 Important SAP Notes

1.2.2 SAP Service Marketplace Links

The following table lists further useful links on SAP Service Marketplace: Content Information about creating error messages SAP Notes search SAP Software Distribution Center (software download and ordering of software) SAP Online Knowledge Products (OKPs) role-specific Learning Maps Location on SAP Service Marketplace service.sap.com/messages service.sap.com/notes service.sap.com/swdc service.sap.com/rkt

1.3 Important SAP Notes

To obtain the latest technical information available, read the following SAP Notes before you start installation. These notes also contain the latest updates and corrections to the installation documentation. The most up-to-date version of SAP Notes is found on SAP Service Marketplace at: service.sap.com/notes SAP Note Number 1151813 1133167 1133168 1133173 1133174 1138018 1138042 1133165 1133166 1133171 1133172 1138017 1138041 1133163 1133164 1133169 1133170 1138016 1138020 1133161 1133162 1138015 Title VIRSANH and VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH VIRSAHR VIRSANH Description Release Notes for AC 530_700 Installation notes for 530_700 Installation notes for 530_700 Upgrades notes for 530_700 Upgrades notes for 530_700 Support packages for 530_700 Support packages for 530_700 Installation notes for 530_640 Installation notes for 530_640 Upgrades notes for 530_640 Upgrades notes for 530_640 Support packages for 530_640 Support packages for 530_640 Installation notes for 530_620 Installation notes for 530_620 Upgrades notes for 530_620 Upgrades notes for 530_620 Support packages for 530_620 Support packages for 530_620 Installation notes for 530_46C Installation notes for 530_46C Support packages for 530_46C

8 Access Control 5.3 Master Guide

February 2008

1.4 GRC Access Control Documentation

1138109

VIRSAHR

Support packages for 530_46C

1.4 GRC Access Control Documentation

Access Control provides the following documentation including this guide. Title SAP GRC Access Control Master Guide SAP GRC Access Control Installation Guide SAP GRC Access Control Upgrade Guide SAP GRC Access Control Operations Guide SAP GRC Access Control User Guide SAP GRC Access Control Implementation Guide SAP GRC Access Control Security Guide Location http://service.sap/instguides http://service.sap http://service.sap http://service.sap/instguides On SAP Help Portal at http://help.sap.com http://service.sap/instguides http://service.sap/securityguide

February 2008

2 SAP GRC Access Control Overview 1.4 GRC Access Control Documentation

2 SAP GRC Access Control Overview

SAP GRC Access Control offers a robust solution for monitoring, testing, and enforcing access and authorization controls that enable enterprises to quickly fulfill compliance and regulatory requirements. The following illustration provides an overview of all software components used by SAP GRC Access Control including Risk Analysis and Remediation, Compliant User Provisioning, Enterprise Role Management, and Superuser Privilege Management.

GRC Access Control Component Matrix Client

Web Browser / Presentation Server

RFC
RTA

NW 7.0 AS Java SP10+

UME SAP IGS
UD Connector

Reporting Analytics

Non-Sap App JDBC

RTA

SAP BW

Java/Web Dynpro Java Application Logic

Risk Analysis & Remediation Compliant User Provisioning Enterprise SuperUser Role Privilege Management Management

Non-Sap App JDBC

RTA

Non-Sap App
RTA

JDBC

10 Access Control 5.3 Master Guide

February 2008

2 SAP GRC Access Control Overview 2.1 Software Component Matrix

2.1 Software Component Matrix

Four components make up SAP GRC Access Control: Risk Analysis and Remediation Enterprise Role Management Superuser Privilege Management Compliant User Provisioning The following table describes software inter-compatibility by feature and version for Access Control 5.3. For more details about software upgrade for all downrev versions see the SAP Upgrade Guide, and refer to the compatibility matrix, https://websmp205.sap-ag.de/ , located on SAP Service Marketplace. Access Control 5.3 is independent of the underlying operating system and database. These applications run on the NetWeaver platform and are automatically supported by NetWeaver. Compatibility information is subject to change.

2.1.1 Access Control 5.3 Compatibility

Software compatibility between Access Control and Virsa Compliance Calibator is shown below.

Access Control 5.3

AC 5.3 Risk Analysis & Remediation AC 5.3 Enterprise Role Management AC 5.3 Superuser Privilege Management AC 5.3 Compliant User Provisioning Y 5.2 NW04(s)

Virsa Compliance Calibrator

5.1 NW04 (s) 5.0 640 4.0 700 4.0 640 4.0 620 4.0 46C 4.0 46B

Access Control 5.3

February 2008

11

2 SAP GRC Access Control Overview 2.2 Technical System Landscape

2.2 Technical System Landscape

This section contains the overall SAP GRC Access Control technical system landscape followed by separate individual landscapes for Risk Analysis and Remediation, Compliant User Provisioning, Enterprise Role Management, and Superuser Privilege Management. An overview of the SAP GRC Access Control technical landscape is shown below.
GRC Access Control Technical System Landscape User Interface Layer
Web Browser

RFC
RTA

Presentation Server

Business Logic Layer

Risk Analysis & Remediation Compliant User Provisioning

Non-Sap App
RTA

Performs Risk Analysis Automated Work Flow Will Mitigate Risks

Reporting Analytics
UD Connector

SAP BW

Non-Sap App
RTA

Enterprise Role Management

Central Role Repository

SuperUser Privilege Management

SuperUser Access

Non-Sap App
RTA

Technology Layer
UME SLD IGS

SAP Netweaver 2004S

12 Access Control 5.3 Master Guide

February 2008

2 SAP GRC Access Control Overview 2.2 Technical System Landscape Risk Analysis and Remediation supports real-time compliance to detect, remove, and prevent access and authorization risk by preventing security and control violations before they occur. The technical system landscape for Risk Analysis and Remediation is shown below.
Risk Analysis and Remediation Landscape
Bex, BI Web App Designer
Executive Analytics Alert Monitor Analysis Engine Controls Manager Data Unification

Web Dynpro
Rule Engine Workflow Engine (AE)

Dashboards

Rule Loader

Rule Cache

Virsa Common Services

Rules Controls Local Persistence Configuration Audit Log Violation Data

Remediation Workflow Context Transaction Log (File) Alert Data Text Data (Transaction name, etc.)

BI

Virsa Adapter

Adapter Framework

BI

SAP

Oracle

Legacy

External systems

Superuser Privileged Management enables users to perform emergency activities outside their roles as a privileged user in a controlled and auditable environment. The technical system landscape for Superuser Privilege Management is shown below.
Superuser Privilege Management Landscape

SAP GUI Logon

Firefighter Dash Board

X
SD FFId

X
MM FFId

X
FI FFId
SD FF Role MM FF Role
CC Analysis Engine

Risk Analysis

Analysis Adapter

WebDynpro Reports

ABAP Reports

February 2008

13

2 SAP GRC Access Control Overview 2.2 Technical System Landscape Compliant User Provisioning automates provisioning, tests for SoD issues, and streamlines approvals to the appropriate business approvers to unburden IT staff and provide a complete history of user access. The technical landscape for Compliant User Provisioning is shown below.
Compliant User Provisioning Landscape
Framework Components Presentation Layer (JSP)
Navigation Framework (UI)
Http requests

Action Classes BAPI Framework Integration SAP JCO Adapters Business Object Classes Data Access Object Layer

SAP R/3
RE CC

RTA

AE DB

Enterprise Role Management standardizes and centralizes role creation. The technical landscape for Enterprise Role Management is shown below.
Enterprise Role Management

Framework Components Presentation Layer (JSP)

Navigation Framework (UI)
Http requests

Action Classes BAPI Framework Integration SAP JCO Adapters Business Object Classes Data Access Object Layer

SAP R/3
AE

RTA
CC

RE DB (Master data & Role info.)

14 Access Control 5.3 Master Guide

February 2008

2 SAP GRC Access Control Overview 2.3. Overall Implementation Sequence

2.3. Overall Implementation Sequence

This section describes the implementation steps required in sequential order to install the GRC Access Control software application. A reference to the corresponding installation documentation and SAP Notes is also included.

2.3.1 Purpose
To install SAP GRC Access Control software use the steps described below. This table contains all available software components. However, to implement a specific scenario, you only need a subset of available software components. For information about software compatibility requirements, see section 2.1 Software Component Matrix. For the latest component version and patch level requirements, see the Important SAP Notes section.

2.3.2 Process
SAP GRC Access Control supports all operating and database software systems supported by SAP NetWeaver. For more details, refer to the product availability matrix on SAP Service Marketplace at service.sap.com. Implementation Sequence Step 1 Required Required Action Install NetWeaver 7.0 Application Server (AS) SP12, (ECC 6.0, NW04S or 2004S) Install Risk Analysis and Remediation Install Compliant User Provisioning Install Enterprise Role Manager Install Superuser Privilege Management Install Access Control Real Time Agent 5.3 Reference See service.sap.com/instructions

2 3 4 5 6

Required Required Required Required Required

VIRCC00_0.SCA VIRAE00_.0SCA VIRRE00_0.SCA VIRFF00_0.SCA One RTA connection is required. VIRSANH Installation Guide SAP GRC Access Control

Optional

Install 2nd Access Control Real Time Agent Install Enterprise Portal Integration Install Launch Pad

VIRSAHR; VIRSANH and SAP_HR are required to deploy 2nd AC RTA. VIREPRTA00_0.SCA

Optional

Optional

VIRACLP00_0.SCA; NetWeaver Business Client is required to deploy Launch Pad

February 2008

15

3 Solution-Wide Topics 2.3. Overall Implementation Sequence

3 Solution-Wide Topics
Shared services provided by SAP NetWeaver are required to run Solution Manager and System Landscape Directory. Refer to the current SAP NetWeaver Master Guide for more information about these topics.

16 Access Control 5.3 Master Guide

February 2008

Appendix A - Main SAP Documentation Types A.1 Cross-Phase Documentation

Appendix A - Main SAP Documentation Types

This chapter provides an overview of the most important documentation types that you need for each phase of the SAP solution software life cycle, and a description of each book type. Documentation types in the software life cycle

Implementation

Operation

Upgrade

SAPterm

SAP Library

Master Guide Component Installation Guide Security Guide Configuration Documentation Implementation Guide (IMG) Solution Management Guide

Upgrade Master Guide Component Upgrade Guide

Release Notes

Delta and Upgrade IMG

A.1 Cross-Phase Documentation

The SAPterm database, SAP Library, and Implementation Guide cover topics spanning all phases of the SAP software life cycle. The Security Guide spans the implementation and operation phases of the software life cycle.

SAPterm
SAPterm is SAPs terminology database. It contains SAP-specific vocabulary in over 30 languages, as well as many definitions and glossary entries in English and German. Target group: Relevant for all target groups Current version: Located in the SAP Help Portal at help.sap.com Additional Information Glossary (direct Access) or Terminology (available as terminology CD), and in the SAP-System in transaction STERM

February 2008

17

Appendix A - Main SAP Documentation Types A.1 Cross-Phase Documentation

SAP Library
The SAP Library is a collection of function- and process-oriented documentation for SAP components. The SAP Library also contains the Business Scenario Descriptions. Target group: Consultants, System Administrators, Project teams for implementations or upgrades Current version: Located in the SAP Help Portal at help.sap.com; also located in the SAP Service Marketplace at service.sap.com/ibc (only the Business Scenario Descriptions)

Implementation Guide (IMG)

The Implementation Guide is a tool for configuring the SAP system to meet customer requirements. Its structure and documentation are component-oriented. Target group: Consultants and Project teams for implementations or upgrades Current version: Located in the SAP menu of the SAP system under Tools Customizing IMG

Security Guide
The Security Guide describes the settings for a medium security level and offers suggestions for raising security levels. A collective security guide is available for the SAP NetWeaver technologies like SAP Web Application Server (SAP Web AS). This document contains general guidelines and suggestions about system security. Other technologies and individual applications have a Security Guide of their own. Target group: Technology consultants, Solution consultants, and Project teams for implementations or upgrades Current version: Located in the SAP Service Marketplace at service.sap.com/securityguide

18 Access Control 5.3 Master Guide

February 2008

Appendix A - Main SAP Documentation Types A.2 Implementation Phase

A.2 Implementation Phase

The Master Guide, Component Installation Guide, and Configuration documentation within SAP Solution Manager cover topics related to the implementation phase of the software life cycle.

Master Guide
The Master Guide is the starting point for implementing an SAP solution. It lists the required SAP components and third party applications that are required for each Business Scenario. It provides scenario-specific descriptions of preparation, execution, and follow-up of an implementation. It also offers references to other documents, such as Component Installation Guides and SAP Notes. Target group: Technology consultants, System Administrators, and Project teams for implementations or upgrades Current version: Located in the SAP Service Marketplace at service.sap.com/securityguide

Component Installation Guide

The Component Installation Guide describes the technical implementation of an SAP component, taking into account the combinations of operating systems and databases. It does not describe any business-related configuration. Target group: Technology consultants, and Project teams for implementations or upgrades Current version: Located in the SAP Service Marketplace at service.sap.com/ instguides

Configuration Documentation in SAP Solution Manager

SAP Solution Manager is a tool with various functions, one of its main functions being the configuration of SAP solutions and Business Scenarios. It contains IMG activities, transactions, and so on, as well as documentation. Instead of the configuration documentation in SAP Solution Manager, there may be separate Business Scenario Configuration Guides in the SAP Service Marketplace for earlier shipments of the Business Scenarios. Target group: Solution consultants, and Project teams for implementations Current version: Located in SAP Solution Manager, and in the SAP Service Marketplace at service.sap.com/ibc

February 2008

19

Appendix A - Main SAP Documentation Types A.3 Production Operation Phase

A.3 Production Operation Phase

The Solution Operation Guide documents requirements for the operation phase of the SAP software life cycle.

Solution Operation Guide

The Solution Operation Guide is the starting point for operating an SAP solution. The guide refers users to the tools and documentation that are needed to carry out various tasks, such as monitoring, backup/restore, master data maintenance, transports, and tests. It also refers users to other documents, for example the SAP Library, the Master Guide, and the Component Management Guides. Target group: System Administrators, Technology consultants, and project teams for implementations or upgrades. Current version: Located in SAP Service Marketplace at service.sap.com/instguides

20 Access Control 5.3 Master Guide

February 2008

Appendix A - Main SAP Documentation Types A.4 Upgrade Phase

A.4 Upgrade Phase

The documentation types needed for the upgrade phase of the SAP software life cycle consist of the Upgrade Master Guide, Component Upgrade Guide, and Release Notes.

Upgrade Master Guide

The Upgrade Master Guide is the starting point for upgrading the Business Scenarios of an SAP solution. It provides scenario-specific descriptions of preparation, execution, and followup of an upgrade. It also refers to other documents, such as the Component Upgrade Guides and SAP Notes. Instead of an Upgrade Master Guide, there may be several Business Scenario Upgrade Guides or a Solution Upgrade Guide for earlier shipments of the Business Scenarios of an SAP solution. Target group: Technology consultants and project teams for upgrades. Current version: Located in SAP Service Marketplace at service.sap.com/instguides

Component Upgrade Guide

The Component Upgrade Guide describes the technical upgrade of an SAP component, taking into account the combinations of operating systems and databases. It does not describe any business-related configuration. Target group: Technology consultants, and project teams for upgrades. Current version: Located in SAP Service Marketplace at service.sap.com/instguides

Release Notes
Release notes are documents that contain short descriptions of new features or changes in an SAP component since the previous release. Release notes about ABAP developments enable the SAP system to generate delta and upgrade IMGs. Target group: Consultants and project teams for upgrades. Current version: Located in SAP Service Marketplace at service.sap.com/ releasenotes and in the SAP menu of the SAP system under Help Release information.

February 2008

21