This blog contains experience gained over the years of implementing (and de-implementing) large scale IT applications/software.

2 thoughts on SAP Change Non-Dialog User to Dialog User Using Function Module

  1. Hi Vijay,

    I wouldn't say this was an exploit, since the software is doing what is considered to be the function that it was written for.
    In this instance, the security of the system is only as good as the controls that have been imposed around the user accounts.
    Segregation of duties would be the ideal solution to this specific problem, instead of leaving user accounts with SAP_ALL. They should really only have the required RFC authorisations (a level of least privilege).



Add Your Comment

* Indicates Required Field

Your email address will not be published.