SAP Notes

Whitelist service for Clickjacking Framing Protection in AS ABAP

Leave a Comment on Whitelist service for Clickjacking Framing Protection in AS ABAP

SAP Note 2142551 – Whitelist service for Clickjacking Framing Protection in AS ABAP

SAP Note 2389051 – ICF service for Clickjacking Framing Protection is not active

Version 4 from Mar 26, 2019 in English:

Resolution

  1. Start Transaction SICF.
  2. Go to default_host-> sap -> public-> bc -> uics.
  3. Activate service UICS and WHITELIST (which can be located under node UICS).

Standard protection measures against Clickjacking (X-FRAME-OPTIONS header) are not suitable for common NetWeaver integration scenarios.

Therefore SAP is providing a whitelist based framework for NetWeaver technologies.

This framework and its implementation are described in SAP Note 2319727.

Related Post

The SAP Cloud Identity Services – Viewing Assigned Tenants and Administrators

2488216 – Unable to assign a system alias (/IWFND/MAINT_SERVICE) because the client role (SCC4) is locked

Adobe LiveCycle Designer Issues

SAP Note 2388483 – How-To: Data Management for Technical Tables

Upgrade of E40-system to S4HANA 1809 – done

The SAP Readiness Check tool is available on the SAP Cloud ALM launchpad

Leave a Comment

Your email address will not be published. Required fields are marked *

Click here to draw a picture to include in your comment.