Network & Communication Security - SAP SRM

How to perform network&communication security?

You can exchange data with HTTPS connection using SSL encryption which can be used to protect data from unauthorized access. SSL stands for Secure Socket Layer. Following points to be considered when you are performing secure network and communication in SAP system.
  • Network topology of SAP system
  • Firewall configuration
  • Transport layer security
  • Using multiple network zones
You need to transfer the components as per the protocol data that use HTTP protocol support encryption of data using SSL protocol.
These components include confidential data like system password, etc. You must perform transport level security as per the available data transfer and protocol.
Use SSL to increase the security between business systems and adapters, business system and integration server.
Destination Delivered Type
SAP ERP (Classic Scenario) No RFCs and SOA Services
SAP ERP (Extended Classic Scenario) No RFCs and IDocs
SAP Customer Relationship Management (SAP CRM) No RFCs and SOA Services
Collaboration Projects (cPro) No XML communication using SAP NetWeaver Process Integration (SAP NetWeaver PI) (Web services)
CFolders No RFCs
Above mentioned table discusses about the system and components and relevant communication destinations for the SAP SRM system.
You need to activate the following services in SAP SRM system to communicate with external systems −
  • /sap/bc/webdynpro/sapsrm
  • /sap/bc/srm
  • /sap/bc/bsp/sapsrm
  • /sap/sapsrm/
  • /default_host/sap/bc/srm
  • /default_host/sap/bc/webdynpro/sapsrm
  • /default_host/sap/bc/bsp/sapsrm

You need to activate the following to use NetWeaver Business client for SRM −

  • /default_host/sap/bc/nwbc/srm

You need to activate the following to use Live Auction cockpit, −

  • /sap/lacmessaging
Use T-code — SICF to activate these services
In Hierarchy type, select service and click on Execute button. In the next window, you can maintain service. Select the required ICF service in the ICF tree in transaction SICF.
Activate the ICF service in one of the following ways −
  • Using menu option Service/Host → Activate
  • Using the context menu and choosing Activate Service


Default_host node is inactive in transaction SICF; the HTTP requests could result in ABAP runtime error RAISE_EXCEPTION with the following short text −
Exception condition "HOST_INACTIVE" triggered.
If you try to access the service an error occurs when a service is inactive in transaction SICF.
To support internet protocols HTTP, HTTPS and SMTP — /default_host/sap/public/icman is activated in transaction.
This service is used to decide how HTTP requests are distributed.

Other Internal Services in SAP

Let us now understand the other internal services in SAP −


This service is useful for error analysis. With this you can get information about the logon procedure in use, header and form fields and the SSO cookie generated for the processed request.


This is also another service activated for error analysis. It creates some error situations in the system and you have to right-click on service should only be activated for error analysis to activate/deactivate service.

All rights reserved © 2018 Wisdom IT Services India Pvt. Ltd Protection Status

SAP SRM Topics