Feb 04 2014

SAP Security Audit Log Activation

Category: SAP Basis,System SecurityFatih Acar @ 14:52

As of Release 4.0, you can use the Security Audit Log to record security-related system information such as changes to user master records or unsuccessful logon attempts. This log is a tool designed for auditors who need to take a detailed look at what occurs in the SAP System. By activating the audit log, you keep a record of those activities that you specify for your audit. You can then access this information for evaluation in the form of an audit analysis report.
The Security Audit Log provides for long-term data access. The audit files are retained until you explicitly delete them. Currently, the Security Audit Log does not support the automatic archiving of the log files; however, you can manually archive them at any time.

SAP Security Audit Log

You can record the following information in the Security Audit Log

  • Successful and unsuccessful dialog logon attempts
  • Successful and unsuccessful RFC logon attempts
  • RFC calls to function modules
  • Changes to user master records
  • Successful and unsuccessful transaction starts
  • Changes to the audit configuration

SAP Security Audit Log Activation Steps

1 – Create Profile

Tcode > SM19

SAP Security Audit Log 1

SAP Security Audit Log 1

SAP Security Audit Log 2

SAP Security Audit Log 2


2 – Active Filter

Tcode > SM19

You can choose audit criteria with Filters.

SAP Security Audit Log 3

SAP Security Audit Log 3

SAP Security Audit Log 3-2

SAP Security Audit Log 3-2

3 – Profile Configuration

Tcode > RZ10

You have to set rsau/enable parameter to 1 to active security audit log for all time.

SAP Security Audit Log 4

SAP Security Audit Log 4

SAP Security Audit Log 5

SAP Security Audit Log 5

SAP Security Audit Log 6

SAP Security Audit Log 6

SAP Security Audit Log 7

SAP Security Audit Log 7


You have to restart SAP Instances to active profile changes.
SAP Security Audit Log 8

SAP Security Audit Log 8

You can show audit logs with tcode SM20 , You can delete old logs with the transaction SM18 .
Source : SAP Offical Documents

75,524 total views, 12 views today

Tags: SAP Basis, SAP Security Audit Log, Sap System Administration, System Administration, System Security

facebook comments:

2 Responses to “SAP Security Audit Log Activation”

  1. Delana Travieso says:

    Thanks a lot for providing individuals with a very breathtaking possiblity to read critical reviews from this web site. It is usually very lovely plus stuffed with a lot of fun for me and my office fellow workers to visit your web site really 3 times every week to read the latest secrets you have got. And of course, we’re at all times motivated with all the great suggestions you serve. Certain 3 areas in this article are undeniably the best I’ve had.

  2. ElviaX says:

    I must say you have high quality content here. Your content should go viral.

    You need initial traffic only. How to get massive traffic?

    Search for; Murgrabia’s tools go viral

Leave a Reply

Time limit is exhausted. Please reload CAPTCHA.