transactionSHUTTLE Security querySHUTTLE Security.
The SAP Business Suite contains sensitive data that is essential to running your day-to-day business, and for addressing business initiatives and regulatory compliance requirements. Winshuttle supports SAP's extensive authorization functionality which protects transactions and data from unwanted access and use.
In order to perform user-enabled data loading, it is critical to apply the proper controls, security, and workflows to ensure that SAP transactional data is fully protected end-to-end. Data governance best practices presume that any software that is integrated with SAP to perform this process must be SAP-certified.
Tested by SAP, transactionSHUTTLE and querySHUTTLE have received the "SAP Certified Integration - Powered by SAP NetWeaver" certifications. Both work natively with SAP security technology and use standard SAP authorization profiles to restrict user access, preserving SAP security standards. With Winshuttle products , there are no "back doors".
The basic transactionSHUTTLE security workflow is shown above. transactionSHUTTLE also provides the following security features:
Transaction Authorization for User If a user does not have access to an SAP transaction, they cannot use transactionSHUTTLE or runSHUTTLE for that transaction. These products can only be used by a user for transactions that they normally have access to.
RFC Authorization for the User. In addition to transaction-level access, Winshuttle users need remote function call (RFC) authorizations in order to make remote function calls to SAP.
SHUTTLE File Control runSHUTTLE users cannot create or modify the SHUTTLE file recordings. Using their own SAP credentials and authorizations, users have access to a limited set of available SHUTTLE files, ensuring an extra level of control over the data loading activities in an enterprise.
SHUTTLE File Locking When a SHUTTLE file is created, the user has the option to set up a password to protect the file from unauthorized access. When a SHUTTLE file is password-protected, the user must type in the password each time in order to edit the file.
Automatic Backup Copies transactionSHUTTLE can automatically store a backup copy of the current SAP data to an Excel worksheet or Access table prior to loading data with the SHUTTLE file. This setting can also be used to undo mass data change mistakes.
Logging and Reporting SAP maintains an audit trail for all transactionSHUTTLE changes and updates, just as it does for manual input. In addition, transactionSHUTTLE maintains an activity log at a summary level for each run on either the user's computer or on a network share.
More details are available in our Integration and Security White paper.
Back to TopquerySHUTTLE follows a similar workflow as transactionSHUTTLE for user authentication. querySHUTTLE provides the following security features and products:
Table-level authorizations To access tables in SAP, querySHUTTLE requires the user to have the table view access via the S_TABU_DIS authorization object.
Organization-level Security querySHUTTLE also looks at the organization-level authorizations (e.g., company code-level or plant-level authorizations) for data access. Query output results are automatically filtered out so that a user only sees the data relevant to the organization that they have access to.
RFC Authorization for the User In addition to table-level access, Winshuttle users need remote function call (RFC) authorizations in order to make remote function calls to SAP.
query File Control xSHUTTLE users cannot create or modify the query files. Using their own SAP credentials and authorizations, users have access to a limited set of available query files, ensuring an extra level of control over the data extraction activities in an enterprise.
query File Locking When a query file is created, the user has the option to set up a password to protect the file from unauthorized access. When a query file is password-protected, the user must type in the password each time in order to edit the file.
Logging and Reporting querySHUTTLE maintains a log of all data extractions for audit purposes.
Back to Top
"With Winshuttle, you can import massive amounts of data directly from a spreadsheet, which is a format that employees know and understand. It's changed how we approach all kinds of SAP data” from mass changes to periodic data cleansing."
- Lynn Farrell, SAP HR and Payroll Manager, Southwark Council
"We're a victim of our own success. I'm adding another member to our team because of the sheer volume of data we're handling with transactionSHUTTLE. This solution has completely changed how we approach and manage many of our projects."
- Peter Hebert, manager of HR data management, RBC
"transactionSHUTTLE gives us the ability to do things we weren't able to do before. We have significantly reduced our manual data entry costs, reduced headcount, and minimized the burden on IT."
- Paul Cahill, Director of Information Technology, Hubbell Wiring Systems
"We have saved over $1 Million in avoided programming, reduced data entry workload costs and Service Level Agreement (SLA) costs."
- Chantal Gauvreau, Business Process Manager, SAP Center of Excellence, Canada Post
"Winshuttle offers the complete automation solution. It's easy-to-install, well-documented desktop software, with excellent technical support"
- Erin Stone, SAP FI/CO Senior Analyst, B. Braun
"Data entry is no longer an IT headache. Our users no longer blame our SAP system and instead fully embrace it."
- Rick Davis, Manager, Enterprise Systems
We now use the term "Winshuttling" to refer to any solution that makes our lives easier.
- Steve Walker, Manager of Supply Chain Systems, Under Armour