Remove SAP GUI security notifications
Are you getting annoyed by all these SAP GUI Security notifications (Fig 1), asking you all the time if you want to allow a file access ? Saying each time “Always allow”, or any option that includes the “allow” word, might get you crazy…
Hopefully, there is an easy solution to get rid of them, if that’s what you want – but I believe that if you provide files or ask SAP to create new files, then, of course, you want it to access them.
Go to the SAP options (Fig 2), and, once there, expand the “Security” section of the tree to display the “Security Settings” (Fig 3).
I will propose you two different methods, a quick and dirty one which will allow everything, not only the file read / write, and another one to allow just what you need.
1 – The quick & dirty method (not recommended)
There is a quick way to allow access, which I do not recommend, but will work absolutely in all cases.
Simply change the “Status” option from “Customized” (Fig 4) (I believe you won’t have a “Strict deny” by default) to “Disabled”. Click “Apply” and/or “Ok” (Fig 4), and you can then freely upload files or ask SAP to write some of your files.
But take care with this solution, as whole security will be disabled, you may experience some unexpected issues later on.
2 – Specifying read/write drives (recommended)
The longer – but more secured – solution, would be to manually specify which folders or drives you want to allow SAP to read / write in it without asking you for permission each time.
Go down to the last line of the “Security rules”, which is blank (Fig 5). Clicking on it will allow you to access the “Insert” button.
Select “Type : File”, “Access Types : Read/write”, enter your drive root followed by a star (for example, “C:/*” under Windows) (Fig 6), and click ok – you will not be asked anymore, in any SAP environment, to allow or deny a read or write access to any file on this drive !
Don’t forget to repeat this operation for each drive : local drives, shared drives, network drives, …
You can also of course only allow the access to a specific folder, or specify systems for a folder.
For example, you can set up access to one directory only for your production environment, one for simulation, one for development, …
Many thanks for this. My admin had changed write to C:/ to Deny.
He insisted he had not done anything either.
You saved my arse. Thanks