Managing Security of the Intercompany Integration Solution
This section explains how to implement a security policy for the intercompany integration solution for SAP Business One and provides recommendations for meeting security demands.
Managing Security of the Intercompany Landscape
The intercompany integration solution is powered by the SAP Integration Framework 2.0 (B1if) which manages and controls the security aspects related to the intercompany integration solution.
The integration framework security guide gives you information that explains how to implement a security policy and provides recommendations for meeting security demands for the integration framework.
To optimize the security of the intercompany integration solution, you should do the following:
-
Implement security policies as suggested in the Integration Framework - Online Help . For more information, choose Start → All programs → Integration solution for SAP Business One → Integration Framework , and then choose Help → Online Help → Operations Part Two , section 3, Security
-
Use the HTTPS protocol to access the Administration Console . Assign a strong login password and change the password periodically.
-
Create additional users for managing access to the Administration Console . This avoids logins with the same credentials by multiple users, and thus produces traceability to specific users. Monitor audit logs to track changes regularly.
-
To make communication safer, you have the option to use HTTPS for the sessions in the integration framework. On the server side you can configure the communication protocol (HTTP or HTTPS). On the client side, you have the option to switch to the HTTPS protocol. By default, the solution runs with HTTPS, and the integration framework allows incoming calls through HTTPS only. Default: port 8080 for HTTP, or port 8443 for HTTPS
Managing Security of the Integration Solutions Add-On
To optimize the security of the integration solutions add-on, you should do the following:
- Implement security policies as suggested in the section Managing Security in SAP Business One in SAP Business One Administrator's Guide on SAP Help Portal .
- Set up additional authorizations for the new screens created by the intercompany integration solution. Choose Administration → System Initialization → Authorizations → General Authorizations
- In the Subject column, click on the arrow to expand the User Authorization field. Expand the Intercompany field and set up the relevant authorizations for the users.
- Change the encryption key periodically. Choose Administration → Setup → Intercompany → Encryption Key .
- Use the HTTPS protocol for executing reports and consolidations. Choose Administration → Setup → Intercompany → B1i Server Details . Enter the following details:
|
Field Description
|
Definition
|
|
HTTPS |
Check this box to enable the solution to use HTTPS. |
|
B1i Server Address |
Enter the server name of the B1i server. |
|
B1i Port |
Enter the HTTPS port of the B1i Server.
The default port is 8443.
|
|
User Name |
Enter the user name of an active B1iP user |
|
Password |
Enter the password of the B1iP user |
To use the HTTPS protocol, you must first configure the communication protocol on the server side and install the self-signed certificate generated during installation of the SAP Business One integration components.
Related Articles
Setup Intercompany Solution with Multiple Branches
With Intercompany Patch level 26, user can now use the intercompany solution with branch enabled companies. With branch solution user can work across branches on one company database and with Intercompany Solution user can work with different SAP ...Vendor Group Control Accounts Setup of Intercompany Solution
This window enables you to define the account payable control accounts and distribution template code for each vendor group defined in the system. When replicating vendor master data, the Intercompany Integration Solution determines the control ...Customer Group Control Accounts Setup of Intercompany Solution
This window enables you to define the account receivable control accounts and distribution template code for each customer group defined in the system. When replicating customer master data, the Intercompany Solution determines the control account ...Monitoring and Managing Intercompany Landscape
Intercompany Solution Cockpit The intercompany solution cockpit allows user to view all intercompany relevant information from the single screen. To open the cockpit, in the top menu bar of the Administration Console, choose the Cockpit option. The ...Define Account Classification Setup of Intercompany Solution
When allocating incomes and expenses, the system posts to specific accounts in the receiver companies depending on the account classification and account type setup in the chart of accounts of the sender company. When posting an allocation, the ...