At Marc Bernard Tools, we take security very seriously. Our tools are built following best practices for secure programming.
This chapter describes only topics related to the security of the tool itself. Please also follow the recommendations provided in the SAP Security Guides at https://help.sap.com/nw75 or https://help.sap.com/bw4hana.
Activation of the Tool
MBT Command Field can be activated system-wide or for specific users only. If required, it is therefore also possible to deactivate the tool completely (without uninstalling it).
For details, see Marc Bernard Tools.
Authorization Checks
The tool performs authorization checks for each security-relevant command. Therefore, users will require the same authorizations as they would, when using the features in the standard transactions.
For example, the command “run rsparam” to execute a program, will perform the same authorization checks as running the program using transaction SA38 or SE38. Similarly, “show t100” to display the content of a table, will perform the same authorization checks as using transaction SE16.
The commands provided by MBT Command Field are basically shortcuts to existing features that are already included in user roles. Therefore your existing roles will be sufficient to provide authorizations for using MBT Command Field as well.