Solution : https://service.sap.com/sap/support/notes/614971 (SAP Service marketplace login required)
Summary :
This SAP Note details the regulation for starting external programs and registering external server programs on SAP Gateway using the 'secinfo' and 'reginfo' files, applicable from Kernel Release 46D onwards. As of Release 6.40, 'reginfo' should be used, governed by 'gw/reg_info'. The configuration requires specifying program (TP), host, and user parameters explicitly in uppercase. Incorrect keyword capitalization defaults to broad permissions, which can be security risks. Proper syntax and attention to detail in setting parameters (USER, HOST, USER-HOST) are critical for securing SAP Gateway from unauthorized access, as outlined in SAP Notes 1069911, 1298433, and 1473017.
Key words :
tp=/usr/sap/prd/sys/exe/run/ caution, /usr/sap/<sid>/<instance>/data/secinfoif, access control listgatewaybex analyzer676 gw_security_error reason, host=<host> user=<user> [user-host=<user-host>], including kernel release 46d, keywords including user-host, hostthe incorrect notation leads, tp = xyz wv corresponds, error user <usr>, user-host=<host>
Related Notes :
| 1503858 | Colored lines for sec(-reg) info test in SMGW |
| 1473017 | Uppercase/lowercase in the files reg_info and sec_info |
| 1425765 | Generating sec_info reg_info |
| 1408081 | Basic settings for reg_info and sec_info |
| 1298433 | Bypassing security in reginfo & secinfo |
| 750877 | Prefix for program ID for start using BACK destination |
| 618516 | Security-related enhancement of RFCEXEC program |