An internal audit has found that the login we use from data services to connect to SAP ERP can access HR tables which include personal details. We have been asked to remove this, but we are struggling to work out how.
We have done what we thought we needed to do, but now we can read metadata, but not get any data
Is there any documentation on how to do this ? The SAP supplement doesn’t go down to this level.
I think its a communications user, but that wouldn’t effect the issue, its not that we can log in and see the info, its that we can set up a tale pull and get it that is an issue.
It would be great if you could check with your security guy - Thanks !