Search Results

Somos movidos pelo propósito de criar valor e gerar impacto para nossos clientes. Ajudando empresas a atingirem seus objetivos e construírem um futuro melhor. Disponivel para projetos: 100% Remotos SAP S/4 HANA FICO Arquiteto de Soluções, Lider ou Consultor Senior Modelo PJ Baixar CV Disponibilidade Taxa/Hora SAP S/4 HANA FI 1909 SAP Design Thinking Deloitte Lean Six Sigma Belt SAP S/4 HANA FI 1909 1/6 Arquiteto de soluções SAP S/4 FICO com 18+ anos de experiência em implementação e integração de negócios, adequação e cumprimento de projetos de grande porte com alta complexidade, capaz de implementar e resolver desafios de negócios de missão crítica. Tenho um currículo repleto de projetos entregues com sucesso, fornecendo consultoria técnica qualificada e treinamento personalizado. Experiência Finance 20 Years ▇▇▇▇▇▇▇▇▇ Controlling 20 Years ▇▇▇▇▇▇▇▇▇ Material Ledger 20 Years ▇▇▇▇▇▇▇▇▇ CO-PC 20 Years ▇▇▇▇▇▇▇▇▇ CO-PA 20 Years ▇▇▇▇▇▇▇▇▇ Cash Mgnt 20 Years ▇▇▇▇▇▇▇▇▇ Credit Mgnt 10 Years ▇▇▇▇▇ Tax 16 Years ▇▇▇▇▇▇ FM 04 Years ▇▇▇▇ ABAP 05 Years ▇▇▇ CFIN 03 Years ▇▇▇ FI-CA 01 Years ▇ Retail 04 Years ▇▇▇▇ Número de Projetos Full Lifecycle 05 Prjs ▇▇▇▇▇ S/4 HANA 07 Prjs ▇▇▇▇▇▇▇ Greenfield 06 Prjs ▇▇▇▇▇▇ Rollout 10 Prjs ▇▇▇▇▇▇▇▇▇ Improvements 09 Prjs ▇▇▇▇▇▇▇▇ Blueprints 02 Prjs ▇ QA 02 Prjs ▇▇ PoC 01 Prj ▇ Upgrades 01 Prj ▇ Indústrias Agribusiness 03 Prjs ▇▇▇ Automotive 01 Prj ▇ Beverage 02 Prjs ▇▇ Biotech 01 Prj ▇ Chemical 06 Prjs ▇▇▇▇▇ Cons. Goods 01 Prj ▇ Finance 01 Prj ▇ Food 02 Prjs ▇▇ Healthcare 01 Prj ▇ Manufacture 03 Prjs ▇▇▇ Media 01 Prj ▇ Mining 01 Prj ▇ Oil & Gas 01 Prj ▇ Paper 01 Prj ▇ Pharma 04 Prjs ▇▇▇▇ Metals 01 Prj ▇ Public Sector 01 Prj ▇ Retail 03 Prjs ▇▇▇ Tech. / Serv. 03 Prjs ▇▇▇ Missão Ajudar as empresas a executar melhor o SAP Melhorando processos, executando soluções custo efetivas e criando valor Aplicando as melhores práticas e trazendo o sistema de volta ao padrão Portfolio de Consultorias Accenture | Capgemini | Cast Group | Deloitte | Engineering | Everis | EY | iGate | Infosys | PwC | SAP Integrações Integração com MM, SD, PP, PS, QM, PM, BW/BI, PI/PO e PLM cProjects, para projetar soluções integradas SAP e sistemas legados. Soluções SAP Solutions for Tax Engine, Country versions, Revenue Recognition, Legal statements, Bank communication and Consolidation. Migração de Dados Coleta de dados | Limpeza de dados | Transformação de dados | Migração de dados SAP CFIN Central Finance Transformation LSMW Legacy System Migration (com código ABAP incorporado) LMTC Legacy Transfer Migration Cockpit Indústrias Agronegócio | Aeroespacial | Automotivo | Bebidas | Biotecnologia | Química | Bens de consumo | Finanças | Alimentos | Fracking | Assistência médica | Fabricação | Mídia | Metais e mineração | Petróleo e gás | Metais preciosos | Setor público | Papel e celulose | Farmacêutico | Varejo | Serviços | Tecnologia | Telecomunicações SAP IS-Solutions SAP PSCD Public Sector Collection and Disbursement | SAP FI-CA Contract Accounting | SAP POS-DM (Retail/Varejo) Gestão de Dados de Ponto de Venda Educação 2016 MBA Strategic Management in Information Technology FGV 2015 Alumni Program Technology, Organizations and Innovation MIT 2015 Bachelor’s Degree Economics (Leave of Absence) Paulista University 2011 Bachelor’s Degree Accounting Paulista University 2004 Bachelor’s Degree Business Administration Mackenzie University Certificações 2021 Design Thinking [+] SAP Certified Associate Design Thinking SAP 2020 SAP S/4 FI [+] SAP S/4 HANA 1909 for Financial Accounting Associates SAP 2013 ITIL [+] ITIL v3 Foundation Certification EXIN 2012 COBIT COBIT 4.1 Foundation Certification ISACA 2009 Lean/Six Sigma Lean/Six Sigma Certification (Yellow Belt) Deloitte 2008 SAP FI SAP ECC 6.0 for Financial Accounting Associates SAP Qualificação e Atividades Profissionais 2020 Agile Agile with Jira (SCRUM and KANBAN) Coursera 2020 SAP TRM SAP TRM Tax and Revenue Management Capgemini 2020 SAP PSCD SAP PSCD Public Sector Collection and Disbursement Capgemini 2020 SAP S/4 FI SAP S/4 Financial Accounting in S/4HANA 1909 SAP 2017 SAP ABAP SAP ABAP Academy SAP 2015 SAP Simple FI SAP HANA Simple Finance, S/4 HANA Migration SAP 2014 SAP NF-e SAP NF-e Nota Fiscal Eletronica 3.10 with GRC Tech Consulting 2013 ITIL ITIL V3 Foundations KA Solution 2012 SAP Material Ledger SAP CO Brazil Localization (Material Ledger) SAP 2012 SAP NF-e GRC SAP NF-e 10.0 with GRC, WBRNFE_10 SAP 2012 SAP NewGL SAP NewGL (New General Ledger) SAP 2012 COBIT COBIT 4.1 Foundations KA Solution 2012 SQL SQL, Microsoft SQL Server Writing Queries KA Solution 2011 SAP CO SAP CO Academy (Controlling Accounting) SAP 2010 HPQC HP Quality Center SAP 2010 SAP InfoPak SAP InfoPak, Documentation Tool SAP 2009 Lean/Six Sigma Lean/Six Sigma (Green Belt Academy) Deloitte 2009 IFRS IFRS, Concepts and Preparation Deloitte 2008 SAP FI SAP FI Brazil Localization SAP 2008 SAP SolMan SAP Solution Manager Deloitte 2008 HPQC HP Quality Center, Mercury HP 2007 SAP FI SAP FI Academy (Financial Accounting) SAP 2007 SAP R/3 SAP BootCamp R/3 4.6c, FI,CO,MM,SD,PP Modules Deloitte

We are driven by the purpose of creating value and generating impact for our clients. Helping businesses to achieve its goals and building better future. Available for SAP FI/CO Projects Greenfields, Rollouts, Improvements, POCs and Upgrades As Consultant, SME, Team Leader or Solution Architect New technologies like S/4 HANA are preferable Download CV Availability Phone SAP S/4 HANA FI 1909 SAP Design Thinking Deloitte Lean Six Sigma Belt SAP S/4 HANA FI 1909 1/6 I'm SAP S/4 FICO Solution Architect with 20 years of experience in implementation and business integration, fitment and fulfillment for big sized projects with high complexity, able to implement and solve mission-critical business challenges. I have a full resume with successful delivered projects by providing skilled technical consulting and custom training. Years of Experience Finance 20 Years ▇▇▇▇▇▇▇▇▇ Controlling 20 Years ▇▇▇▇▇▇▇▇▇ Material Ledger 20 Years ▇▇▇▇▇▇▇▇▇ CO-PC 20 Years ▇▇▇▇▇▇▇▇▇ CO-PA 20 Years ▇▇▇▇▇▇▇▇▇ Cash Mgnt 20 Years ▇▇▇▇▇▇▇▇▇ Credit Mgnt 10 Years ▇▇▇▇▇ Tax 16 Years ▇▇▇▇▇▇ FM 04 Years ▇▇▇▇ ABAP 05 Years ▇▇▇ CFIN 03 Years ▇▇▇ FI-CA 01 Years ▇ Retail 04 Years ▇▇▇▇ Number of Projects Full Lifecycle 05 Prjs ▇▇▇▇▇ S/4 HANA 07 Prjs ▇▇▇▇▇▇▇ Greenfield 06 Prjs ▇▇▇▇▇▇ Rollout 10 Prjs ▇▇▇▇▇▇▇▇▇ Improvements 09 Prjs ▇▇▇▇▇▇▇▇ Blueprints 02 Prjs ▇ QA 02 Prjs ▇▇ PoC 01 Prj ▇ Upgrades 01 Prj ▇ Industry Sectors Agribusiness 03 Prjs ▇▇▇ Automotive 01 Prj ▇ Beverage 02 Prjs ▇▇ Biotech 01 Prj ▇ Chemical 06 Prjs ▇▇▇▇▇ Cons. Goods 01 Prj ▇ Finance 01 Prj ▇ Food 02 Prjs ▇▇ Healthcare 01 Prj ▇ Manufacture 03 Prjs ▇▇▇ Media 01 Prj ▇ Mining 01 Prj ▇ Oil & Gas 01 Prj ▇ Paper 01 Prj ▇ Pharma 04 Prjs ▇▇▇▇ Metals 01 Prj ▇ Public Sector 01 Prj ▇ Retail 03 Prjs ▇▇▇ Tech. / Serv. 03 Prjs ▇▇▇ My Mission To help companies run SAP better Improving processes, running cost-effective solutions and creating value Applying best practices and bringing the system back to standard Consultancies in my Portfolio Accenture | Capgemini | Cast Group | Deloitte | Engineering | Everis | EY | iGate | Infosys | PwC | SAP Integration Skills Integration with MM, SD, PP, PS, QM, PM, BW/BI, PI/PO and PLM cProjects, to design architectural solutions in SAP and also legacy systems. Solution Skills SAP Solutions for Tax Engine, Country versions, Revenue Recognition, Legal statements, Bank communication and Consolidation. Data Migration Data Collection / Data Cleansing / Data Transformation / Data Migration SAP CFIN Central Finance Transformation LSMW Legacy System Migration (accelerated with embedded ABAP code) LMTC Legacy Transfer Migration Cockpit Industry Solutions Agribusiness | Aerospace | Automotive | Beverage | Biotechnology | Chemical | Consumer Goods | Finance | Food | Fracking | Health Care | Manufacture | Media | Metals & Mining | Oil & Gas | Precious Metals | Public Sector | Paper & Cellulose | Pharmaceutical | Retail | Services | Technology | Telecommunication | Utilities SAP IS-Solutions SAP PSCD Public Sector Collection and Disbursement | SAP FI-CA Contract Accounting | SAP POS-DM (Retail) Point of Sale Data Management Education 2016 MBA Strategic Management in Information Technology FGV 2015 Alumni Program Technology, Organizations and Innovation MIT 2015 Bachelor’s Degree Economics (Leave of Absence) Paulista University 2011 Bachelor’s Degree Accounting Paulista University 2004 Bachelor’s Degree Business Administration Mackenzie University Certification 2021 Design Thinking [+] SAP Certified Associate Design Thinking SAP 2020 SAP S/4 FI [+] SAP S/4 HANA 1909 for Financial Accounting Associates SAP 2013 ITIL [+] ITIL v3 Foundation Certification EXIN 2012 COBIT COBIT 4.1 Foundation Certification ISACA 2009 Lean/Six Sigma Lean/Six Sigma Certification (Yellow Belt) Deloitte 2008 SAP FI SAP ECC 6.0 for Financial Accounting Associates SAP Qualifications and Professional Activities 2020 Agile Agile with Jira (SCRUM and KANBAN) Coursera 2020 SAP TRM SAP TRM Tax and Revenue Management Capgemini 2020 SAP PSCD SAP PSCD Public Sector Collection and Disbursement Capgemini 2020 SAP S/4 FI SAP S/4 Financial Accounting in S/4HANA 1909 SAP 2017 SAP ABAP SAP ABAP Academy SAP 2015 SAP Simple FI SAP HANA Simple Finance, S/4 HANA Migration SAP 2014 SAP NF-e SAP NF-e Nota Fiscal Eletronica 3.10 with GRC Tech Consulting 2013 ITIL ITIL V3 Foundations KA Solution 2012 SAP Material Ledger SAP CO Brazil Localization (Material Ledger) SAP 2012 SAP NF-e GRC SAP NF-e 10.0 with GRC, WBRNFE_10 SAP 2012 SAP NewGL SAP NewGL (New General Ledger) SAP 2012 COBIT COBIT 4.1 Foundations KA Solution 2012 SQL SQL, Microsoft SQL Server Writing Queries KA Solution 2011 SAP CO SAP CO Academy (Controlling Accounting) SAP 2010 HPQC HP Quality Center SAP 2010 SAP InfoPak SAP InfoPak, Documentation Tool SAP 2009 Lean/Six Sigma Lean/Six Sigma (Green Belt Academy) Deloitte 2009 IFRS IFRS, Concepts and Preparation Deloitte 2008 SAP FI SAP FI Brazil Localization SAP 2008 SAP SolMan SAP Solution Manager Deloitte 2008 HPQC HP Quality Center, Mercury HP 2007 SAP FI SAP FI Academy (Financial Accounting) SAP 2007 SAP R/3 SAP BootCamp R/3 4.6c, FI,CO,MM,SD,PP Modules Deloitte

A method is a structured procedure for bringing about a certain goal, like acquiring knowledge or verifying knowledge claims. This normally involves various steps, like choosing a sample, collecting data from this sample, and interpreting the data. Methodologies In its most common sense, methodology is the study of research methods. However, the term can also refer to the methods themselves or to the philosophical discussion of associated background assumptions. A method is a structured procedure for bringing about a certain goal, like acquiring knowledge or verifying knowledge claims. This normally involves various steps, like choosing a sample, collecting data from this sample, and interpreting the data. The study of methods concerns a detailed description and analysis of these processes. It includes evaluative aspects by comparing different methods. This way, it is assessed what advantages and disadvantages they have and for what research goals they may be used. These descriptions and evaluations depend on philosophical background assumptions. Examples are how to conceptualize the studied phenomena and what constitutes evidence for or against them. When understood in the widest sense, methodology also includes the discussion of these more abstract issues. Methodologies to Save Time Eat The Frog The idea is that you identify one challenging task (the frog) and complete the task first thing in the morning (eating it). To put it simply, eating the frog is the process of identifying your most difficult task of the day and completing it before you do any other work. 3-3-3 Method 3 Hours Deep Work: Most critical and important things 3 Hours Shorter Tasks: Urgent tasks that you've been avoiding but need to be completed 3 Hours Maintenance Tasks: Activities to keep life in order Warren Buffett's 5/25 Rule Identify the top 25 important tasks Prioritize them by importance Only focus on the top 5 tasks Ignore the remaining 20 tasks 80/20 Rule (Pareto Principle) The 80/20 rule maintains that 80% of outcomes comes from 20% of causes. The 80/20 rule prioritizes the 20% of factors that will produce the best results. A principle of the 80/20 rule is to identify an entity's best assets and use them efficiently to create maximum value. Identify the vital 20% that will produce the best results That 20% will eliminate or reduce the trivial 80% Pomodoro Technique Decide Task Set timer 25 minutes Stop when timer goes off Take 5 minutes break After 4 cycles take 15-30 minutes break ABCDE Method Categorize tasks and execute by importance A - Most Important B - Important C - Nice To Do D - Delegate E - Eliminate MSCW Method Must-Have: Critical for project success Should-Have: Important but not critical Could-Have: Desirable, if time and resource Won't-Have: Deferred for future phases Pickle Jar Method (Glass Jar) The idea is that you should always start with your rocks (high-priority tasks), followed by your pebbles (medium-priority tasks), and then your sand (low-priority tasks). Finish off by filling the jar with water (“off” time). Do major tasks first Slot in minor tasks around the major ones Continuously assess and reprioritized tasks 1-3-5 Method The 1-3-5 Rule is a structured technique by which you can categorize your tasks into a to-do list that is proven to increase productivity. This rule asks you to accomplish 1 big mission, 3 medium tasks, and 5 small things. 1 Major Task 3 Medium Tasks 5 Small Tasks Eisenhower Matrix The Eisenhower Matrix is also known as the time management matrix, the Eisenhower Box, and the urgent-important matrix. This tool helps you divide your tasks into four categories: the tasks you'll do first, the tasks you'll schedule for later, the tasks you'll delegate, and the tasks you'll delete. Important /Urgent: Do - Tasks with clear deadlines and significance consequences if not completed in a timely fashion Important /Not Urgent: Schedule - Tasks with no set deadline but that bring you closer to your long-term goals Not Important / Urgent: Delegate - Tasks that need to get done, but don't need your expertise in order to be completed Not Important / Not Urgent: Delete - Tasks that distract you from your preferred course, and don't add any measurable value Getting Things Done Method (GTD) GTD method operates with the belief that the more information you're mentally keeping track of, the less productive and focused you are. Instead of relying on your brain, the GTD methodology encourages you to store all of your work information in an external, organized source of truth. Capture Tasks Clarify Their Meaning Organize Them Into Lists Reflect On Progress Engage With Action 2-Minute Rule The 2-Minute Rule was created to help reducing procrastination by enabling you to tackle small tasks that often get overlooked. If task is less than 2 minutes do it now If task is greater than 2 minutes delegate or defer Task Batching Technique Task batching is a productivity strategy that involves grouping similar tasks together to complete all at once. This technique can help you avoid multitasking and increase the amount of time you have to focus on tasks. Sort Similar Tasks Block Deliciated Time Do Tasks In Batches Time Batching Technique Time blocking is a time management technique where you schedule how you'll spend each day, one block at a time. For every task you need to complete, decide how much time (roughly) it'll take, and add that amount of time to your calendar. 08:00am - 11:00am: Deep Work (Your most important tasks) 11:00am - 11:30am: Quick Tasks (Emails, phone calls, etc) 11:30am - 12:30pm: Break (eat, exercise, relax) 12:30pm - 02:00pm: Important Tasks (Projects, planning, etc) 02:00pm - 04:00pm: Meetings (one-on-ones, follow ups) Agile Methodology The Agile methodology is a project management approach that involves breaking the project into phases and emphasizes continuous collaboration and improvement. Teams follow a cycle of planning, executing, and evaluating. Kanban

Topics: Web Security | DNS Setup DNSSEC | pfSense | Network Protocols | Gmail Advanced Optimization | Plus Addressing | Dotted Addressing Up Cyber Security Cyber Security Overview Cyber Security Solution | XDR vs SIEM Wazuh (XDR + SIEM Platform) Reverse Proxy Google | Gmail Optimization | DNSSEC Webserver DNS | Domain Name System Public DNS Servers rDNS |Reverse DNS mDNS | Multicast DNS Ping | How to Ping a Specific Port? Telnet | Teletype Network NMAP | Network Mapper Wireshark | Open-Source Network Packet Analyzer Network Protocols TCP vs UDP | Protocol Comparison SSL vs TLS | Protocol Comparison Public Cloud Services Comparison Cyber Security Overview Cyber security is the practice of defending computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks. The term applies in a variety of contexts, from business to mobile computing, and can be divided into a few common categories. Network security is the practice of securing a computer network from intruders, whether targeted attackers or opportunistic malware. Application security focuses on keeping software and devices free of threats. A compromised application could provide access to the data its designed to protect. Successful security begins in the design stage, well before a program or device is deployed. Information security protects the integrity and privacy of data, both in storage and in transit. Operational security includes the processes and decisions for handling and protecting data assets. The permissions users have when accessing a network and the procedures that determine how and where data may be stored or shared all fall under this umbrella. Disaster recovery and business continuity define how an organization responds to a cyber-security incident or any other event that causes the loss of operations or data. Disaster recovery policies dictate how the organization restores its operations and information to return to the same operating capacity as before the event. Business continuity is the plan the organization falls back on while trying to operate without certain resources. End-user education addresses the most unpredictable cyber-security factor: people. Anyone can accidentally introduce a virus to an otherwise secure system by failing to follow good security practices. Teaching users to delete suspicious email attachments, not plug in unidentified USB drives, and various other important lessons is vital for the security of any organization. Cyber Security Solution | XDR vs SIEM XDR (Extended detection and response) It is a comprehensive cybersecurity solution that combines multiple security technologies and data sources to provide enhanced threat detection, response, and remediation capabilities. XDR expands beyond traditional EDR (Endpoint Detection and Response) solutions and incorporates additional security telemetry data from various sources, such as network traffic, cloud environments, and other endpoints. Key features and benefits Enhanced visibility : XDR collects and analyzes data from diverse sources, including endpoints, network traffic, cloud platforms, and more. This broader visibility provides a comprehensive understanding of the organization's security posture and allows for the detection of complex threats that may span multiple layers. Advanced analytics and detection : XDR leverages advanced analytics, machine learning, and threat intelligence to detect and prioritize potential security incidents accurately. By applying behavioral analytics and anomaly detection, XDR can identify and flag suspicious activities or indicators of compromise. Automated and streamlined response : XDR streamlines the incident response process by automating investigation and remediation actions. It can orchestrate response activities across different security tools and endpoints, reducing the time and effort required to contain and mitigate threats. Threat hunting capabilities : XDR enables proactive threat hunting by allowing security teams to search for indicators of compromise (IoCs) and suspicious activities across the entire security ecosystem. This helps in identifying and eliminating threats before they cause significant damage. Improved operational efficiency : By consolidating and correlating security data from multiple sources, XDR simplifies security operations and reduces alert fatigue. It provides context-rich insights and actionable intelligence, enabling security teams to focus on critical threats and respond more efficiently. SIEM (Security information and event management) It is a cybersecurity solution that helps organizations collect, analyze, and correlate security event data from various sources within their IT infrastructure. SIEM systems provide real-time monitoring, threat detection, incident response, and compliance management capabilities. Key features and benefits Data Collection : SIEM collects log data, security events, and system activity logs from a wide range of sources, including network devices, servers, applications, firewalls, intrusion detection systems (IDS), and more. These logs contain valuable information about security events, user activities, and system behavior. Log Management : SIEM systems store and manage log data in a centralized repository or database. This allows for easy search, retrieval, and long-term retention of logs for compliance and forensic purposes. Event Correlation : SIEM analyzes and correlates log data from different sources to identify patterns, anomalies, and potential security incidents. It applies predefined rules or algorithms to match events and generate meaningful alerts or notifications. Real-Time Monitoring : SIEM continuously monitors security events in real time and provides dashboards and visualizations to give security teams a holistic view of the organization's security posture. It allows them to track activities, detect threats, and respond promptly to incidents. Threat Detection : SIEM uses rule-based correlation or advanced analytics techniques to detect potential security threats and malicious activities. It can identify patterns that indicate attacks, such as brute-force login attempts, suspicious network traffic, or unauthorized access attempts. Incident Response : SIEM provides workflows and automation capabilities to streamline incident response processes. It enables security teams to investigate and respond to security incidents efficiently, including threat containment, analysis, and remediation. Compliance Management : SIEM assists organizations in meeting regulatory compliance requirements by collecting and analyzing security logs for auditing purposes. It generates reports and provides evidence of compliance with standards such as PCI DSS, HIPAA, GDPR, and others. Log Retention and Forensics : SIEM systems store logs for extended periods, allowing security teams to perform forensic analysis and investigations when necessary. This helps in understanding the scope and impact of security incidents and supports post incident remediation efforts. XDR vs SIEM (Key Differences) 1. Data Sources: SIEM primarily focuses on log data from various sources within the network, such as firewalls, servers, applications, and network devices. It collects and analyzes logs to identify security events and generate alerts. XDR goes beyond logs and incorporates a broader range of security telemetry data. It collects and analyzes data from diverse sources, including endpoints, network traffic, cloud environments, and sometimes additional sources like cloud applications, email gateways, or user behavior analytics. 2. Endpoint vs. Network Focus: SIEM traditionally places more emphasis on network-focused data sources, analyzing logs from network devices and servers. While it can incorporate some endpoint data, the primary focus is on network-centric security events. XDR expands the scope to include both endpoint and network data. It incorporates endpoint detection and response (EDR) capabilities, analyzing endpoint activities, processes, and behaviors. It also includes network detection and response (NDR) functionalities to monitor network traffic and identify threats. 3. Threat Detection Approach: SIEM typically relies on rule-based correlation and signature-based detection to identify security incidents. It uses predefined rules and signatures to match events and generate alerts based on known patterns. XDR leverages advanced analytics, machine learning, and threat intelligence to detect sophisticated threats. It applies behavioral analytics, anomaly detection, and machine learning algorithms to identify anomalies, unknown threats, and indicators of compromise. 4. Response and Automation: SIEM systems provide alerting and reporting capabilities, allowing security teams to investigate and respond to incidents manually. While some level of automation is possible, the focus is primarily on generating alerts and providing analysis for human decision-making. XDR offers more extensive automation and orchestration capabilities. It can automate response actions, such as isolating compromised endpoints, blocking malicious network traffic, or initiating remediation tasks. 5. Holistic View and Context: SIEM provides visibility into security events and logs, allowing security teams to monitor activities and detect threats within the network. XDR aims to provide a unified and holistic view of the organization's security posture. By collecting and correlating data from various sources, including endpoints, network, and cloud. Wazuh (XDR + SIEM Platform) Wazuh is a free and open-source security platform that unifies XDR and SIEM capabilities. It protects workloads across on-premises, virtualized, containerized, and cloud-based environments. Wazuh unifies historically separate functions into a single agent and platform architecture. Active XDR protection from modern threats: Wazuh provides analysts real-time correlation and context. Active responses are granular, encompassing on-device remediation so endpoints are kept clean and operational. A comprehensive SIEM solution : The Wazuh Security Information and Event Management (SIEM) solution provides monitoring, detection, and alerting of security events and incidents. Endpoint Security | Configuration Assessment, Malware Detection and File Integrity Monitoring Threat Intelligence | Threat Hunting, Log Data Analysis and Vulnerability Detection Security Operations | Incident Response, Regulatory Compliance and IT Hygiene Cloud Security | Container Security, Posture Management and Workload Protection How it is Structured Wazuh is structured around three pivotal components, each playing a distinct role: 1 | Indexer | The Indexer is the backbone of Wazuh, responsible for efficiently storing and managing vast amounts of security data. It plays a crucial role in facilitating rapid data retrieval and analysis Stage 1 Installation |Certificate creation Stage 2 Installation |Nodes installation Stage 3 Installation |Cluster initialization 2 | Server | Acting as the core processing unit, the Server interprets and analyzes the data collected by agents. It executes essential security operations, such as threat detection, incident response, and compliance management Stage 1 Installation | Wazuh server node installation Stage 2 Installation |Cluster configuration for multi-node deployment 3 | Dashboard | The Dashboard is the user-friendly interface that provides a visual representation of your security data. It offers pre-built dashboards for quick insights into security events, vulnerabilities, file integrity monitoring, configuration assessments, cloud infrastructure monitoring, and compliance standards Together, these three components form the foundation of Wazuh, offering a scalable and flexible solution to enhance your organization’s cybersecurity posture. Requirements OS: 64-bit Linux OS Versions: RHEL 7, 8, 9 | Amazon Linux 2 | CentOS 7, 8 | Ubuntu 16.04, 18.04, 20.04, 22.04 Hardware for 1-25 agents: Minimum: 2 CPU (cores) | 4 RAM (GBs) Recommended: 4 CPU (cores) | 8 RAM (GBs) Disk space for 1-25 agents: 50 GBs per 90 Days data Browser Compatibility: Chrome 95 or later | Firefox 93 or later | Safari 13.7 or later Browser w/Limited Support: Other Chromium-based browsers Browser Not Supported: Internet Explorer 11 is not supported Before Installation | Lessons Learned | Common constraints CPU/Memory Error | In the installation step the process can be aborted if the requirements are not met Even with the right CPUs/Memory RAM set, the script consider the available at the moment of installation, and the system will be consuming some of the resources. You can just increase a little more 1 Option: If you are using a VM, you can increase the CPU cores and Memory RAM 2 Option: You the "-i" in the end of the command to bypass that (you will see in the prompt command) Disk Space Error | In the final steps of the script (dashboard installation), the processes can fail and the installation reverted, due a lack of free disk Even with a large VM disk, this can happens due the way the Ubuntu setted the partitions 1 Option: You need to increase the partition before installation (How to do it) Virtual Hard Disk expands to Maximum Size If you are using a VM with a dynamically expanding disk, be aware that Wazuh may expand exponentially until it reaches the maximum disk size, despite the internal space being unused and available. Restrict the maximum size accordingly After Installation To deploy your first agent On the Wazuh Dashboard, go to Menu > Server Management > Endpoints Summary Lost Password | If you lost your initial admin password you can run this command Retrieve Users and Passwords | Command: tar -O -xvf wazuh-install-files.tar wazuh-install-files/wazuh-passwords.txt Deploying on Ubuntu This is the quickstart method, provided by Wazuh, to deploy the version v4.9.0 using the official bash script. You can check the official page for the latest version deployments. (https://documentation.wazuh.com/current/quickstart.html ) Open the terminal For non-root users, use the command "sudo " to perform administrative tasks (Optional) If your system id not updated | Update Ubuntu | Command: apt update Download the Wazuh installation assistant | Command: curl -sO https://packages.wazuh.com/4.9/wazuh-install.sh Execute the Wazuh Scrip using the assistant | Command: bash wazuh-install.sh -a (Optional) If the minimum hardware requirement error appears use "-i" | Command: bash wazuh-install.sh -a -i Login to wazuh using the Browser | Command: https:// Just wait a little longer if you get a message "Wazuh dashboard server is not ready yet " Initial user and password is informed at the end of installation Deploying on Docker This is the installation alternative method, provided by Wazuh, to deploy the version v4.8.2 on docker. You can check the official page for the latest version deployments. (https://documentation.wazuh.com/current/deployment-options/docker/wazuh-container.html ) Open the terminal For non-root users, use the command "sudo " to perform administrative tasks (Optional) If your system id not updated | Update Ubuntu | Command: apt update Install Docker and Docker Compose | Command: apt install docker.io docker-compose -y Clone the Wazuh | Command: git clone https://github.com/wazuh/wazuh-docker.git -b v4.8.2 Check the new wazuh-docker directory | Command: ls Enter in the new wazuh-docker directory (single-node) | Command: cd wazuh-docker/single-node/ Generate the certificate | Command: docker-compose -f generate-indexer-certs.yml run --rm generator Deploy Wazuh single-node using docker-compose in background | Command: docker-compose up -d Check the Docker Stats to see if all is done and running | Command: docker stats Login to wazuh using the Browser | Command: https:// Just wait a little longer if you get a message "Wazuh dashboard server is not ready yet " Initial user and password | User: admin / Password: SecretPassword Upgrading Wazuh on Docker If you have a previous version like v4.8.2, in this example you can upgrade to v4.9.0 Open terminal For non-root users, use the command "sudo " to perform administrative tasks Enter in the new wazuh-docker directory (single-node) | Command: cd wazuh-docker/single-node/ Stop the outdated environment | Command: docker-compose down Checkout the tag for the current version | Command: git checkout v4.9.0 Start the new version of Wazuh | Command: docker-compose up -d Check the Docker Stats to see if all is done and running | Command: docker stats Restarting the Wazuh Container If you restart your VM, or for any other reason, your Wazuh dashboard starts giving errors, you can restart the Wazuh container to continue using it until you check the logs and fix the issues. Open terminal For non-root users, use the command "sudo " to perform administrative tasks Enter in the new wazuh-docker directory (single-node) | Command: cd wazuh-docker/single-node/ Stop the outdated environment | Command: docker-compose down Wait until all processes are "done" Start the new version of Wazuh | Command: docker-compose up -d Check the Docker Stats to see if all is done and running | Command: sudo docker stats Reverse Proxy A reverse proxy is a server that sits in front of web servers and forwards client (e.g. web browser) requests to those web servers. Reverse proxies are typically implemented to help increase security, performance, and reliability. In order to better understand how a reverse proxy works and the benefits it can provide, let’s first define what a proxy server is. Benefits of a P roxy To avoid state or institutional browsing restrictions To block access to certain content To protect their identity online Benefits of a Reverse Proxy Load balancing Protection from attacks GSLB (Global server load balancing) Caching SSL encryption Forward Proxy Flow Reverse Proxy Flow Forward Proxy Flow 1/2 Google | Gmail Optimization | DNSSEC Webserver Gmail Advanced Optimization Plus Addressing Probably you receive a lot of unsolicited emails every day. That happens because many companies sell your data for data brokers. The Google "Plus Addressing" feature helps you to add additional information in your gmail address. Gmail Address: "Email Address" + "@gmail.com" (e.g. "johndoe@gmail.com ") Gmail Plus Addressing: "Email Address" + "Plus Addressing" + "@gmail.com" (e.g. "johndoe+amazon@gmail.com ") Example : If your email is "johndoe@gmail.com " and you want to to create a Amazon Account You can add "+amazon" in you email. So your email will be on Amazon "johndoe+amazon@gmail.com " You will receive the amazon emails in your gmail like the other emails, but you will be able to see the receiver as "johndoe+amazon@gmail.com " If Amazon sells your data for data brokers you will know what they did Warning : Nowadays, many companies already know this trick and are blocking Plus Addressing Dotted Addressing Unlike Plus Addressing, companies don't block dots in the Gmail address. It's not as flexible, but it's another way to change your email address without having to create another Gmail account. Gmail Address: "Email Address" + "@gmail.com" (e.g. "johndoe@gmail.com ") Gmail Dotted Addressing: "Email prefix" + "." "+ "Email suffix" (e.g. "john.doe@gmail.com ") Gmail Filtering You can use some filters in Gmail to find specific emails. On the gmail account, go to 'Show Search Option" In the field 'Has the words' Filter for emails with no Label | Syntax: has:nouserlabels Filter by Labels with space | Label '[ Important ]' nested on '[ Personal ]'|Syntax: user label:{[-Personal-] [-Important-]} Filter removing a specific Label | Syntax: -{label:[-Personal-]-[-Important-]} Filter by emails with no label, from yourself, before a date | Syntax: has:nouserlabels -from:me before:01/01/2013 DNSSEC on Google Domain with Cloudflare Activating DNSSEC on Google Domains with Cloudflare In Cloudflare go to | DNS > Settings > Activate DNSSEC Get the: Tag Key Digest In Google Domains go to | DNS Paste the: Tag Key Algorithm = 13 Digest Type = SHA256 Digest Wait a couple minutes and it is done. You can go back to Cloudflare and see the message "Success! Your domain is protected with DNSSEC." Google Domains DNSSEC Google Domains DNSSEC 1/1 DNS | Domain Name System DNS is often compared to a phone book, and it allows users to type domain names into their browsers without having to remember IP addresses. Browser: www.google.com > DNS Translates > IP Address: 142.250.187.228 Example: when a user types "www.google.com " into their browser, DNS translates that domain name into an IP address that their browser can use to load the website. DNS Record Types IP address resolution CNAME | CNAME records maps a domain name to another (canonical) domain name. They can be used to resolve other record types present on the target domain name Example: CNAME = 'finance' on google, like 'finance.google.com', will be mapped to 'https://www.google.com/finance/' A | A records map a domain name to one or multiple IPv4 address(es) Example: A = 'google.com' will be mapped to '142.250.187.238' AAAA | AAAA records map a domain name to one or multiple IPv6 address(es) Example: AAAA = 'google.com' will be mapped to '2a00:1450:4009:827::200e' Email authentication MX | A mail exchange (MX) record is required to deliver email to a mail server DKIM | A DomainKeys Identified Mail (DKIM) record ensures email authenticity by cryptographically signing emails SPF | A Sender Policy Framework (SPF) record lists authorized IP addresses and domains that can send email on behalf of your domain DMARK | A Domain-based Message Authentication Reporting and Conformance (DMARC) record helps generate aggregate reports about your email traffic and provide clear instructions for how email receivers should treat non-conforming emails Specialized records TXT | A text (TXT) record lets you enter text into the DNS system NS | A nameserver (NS) record indicates which server should be used for authoritative DNS CCA | A Certificate Authority Authorization (CAA) record specifies which Certificate Authorities (CAs) are allowed to issue certificates for a domain SRV | A service record (SRV) specifies a host and port for specific services like voice over IP (VOIP), instant messaging, and more SVCB and HTTPS | Service Binding (SVCB) and HTTPS Service (HTTPS) records allow you to provide a client with information about how it should connect to a server upfront, without the need of an initial plaintext HTTP connection PTR | A pointer (PTR) record specifies the allowed hosts for a given IP address SOA | A start of authority (SOA) record stores information about your domain such as admin email address, when the domain was last updated, and more DS and DNSKEY | DS and DNSKEY records help implement DNSSEC, which cryptographically signs DNS records to prevent domain spoofing There are 4 DNS servers involved in loading a webpage DNS Recursor | The recursor can be thought of as a librarian who is asked to go find a particular book somewhere in a library. The DNS recursor is a server designed to receive queries from client machines through applications such as web browsers. Typically the recursor is then responsible for making additional requests in order to satisfy the client’s DNS query Root Nameserver | The root server is the first step in translating (resolving) human readable host names into IP addresses. It can be thought of like an index in a library that points to different racks of books - typically it serves as a reference to other more specific locations TLD Nameserver | The top level domain server (TLD) can be thought of as a specific rack of books in a library. This nameserver is the next step in the search for a specific IP address, and it hosts the last portion of a hostname (In example.com, the TLD server is “com”) Authoritative Nameserver | This final nameserver can be thought of as a dictionary on a rack of books, in which a specific name can be translated into its definition. The authoritative nameserver is the last stop in the nameserver query. If the authoritative name server has access to the requested record, it will return the IP address for the requested hostname back to the DNS Recursor (the librarian) that made the initial request DNS Lookup For most situations, DNS is concerned with a domain name being translated into the appropriate IP address. Often DNS lookup information will be cached either locally inside the querying computer or remotely in the DNS infrastructure. There are typically 8 steps in a DNS lookup. When DNS information is cached, steps are skipped from the DNS lookup process which makes it quicker. The example below outlines all 8 steps when nothing is cached 1. A user types ‘example.com’ into a web browser and the query travels into the Internet and is received by a DNS recursive resolver 2. The resolver then queries a DNS root nameserver (.) 3. The root server then responds to the resolver with the address of a Top Level Domain (TLD) DNS server (such as .com or .net), which stores the information for its domains. When searching for example.com, our request is pointed toward the .com TLD 4. The resolver then makes a request to the .com TLD 5. The TLD server then responds with the IP address of the domain’s nameserver, example.com 6. Lastly, the recursive resolver sends a query to the domain’s nameserver 7. The IP address for example.com is then returned to the resolver from the nameserver 8. The DNS resolver then responds to the web browser with the IP address of the domain requested initially DNS Lookup DNS Lookup and Webpage Query DNS Record Request Sequence DNS Lookup DNS Lookup and Webpage Query 1/2 Once the 8 steps of the DNS lookup have returned the IP address for 'example.com', the browser is able to make the request for the web page: 9. The browser makes a HTTP request to the IP address 10. The server at that IP returns the webpage to be rendered in the browser DNS resolver The DNS resolver is the first stop in the DNS lookup, and it is responsible for dealing with the client that made the initial request. The resolver starts the sequence of queries that ultimately leads to a URL being translated into the necessary IP address. A typical uncached DNS lookup will involve both recursive and iterative queries. It's important to differentiate between a recursive DNS query and a recursive DNS resolver. The query refers to the request made to a DNS resolver requiring the resolution of the query. A DNS recursive resolver is the computer that accepts a recursive query and processes the response by making the necessary requests. 3 types of DNS queries Recursive Query | In a recursive query, a DNS client requires that a DNS server (typically a DNS recursive resolver) will respond to the client with either the requested resource record or an error message if the resolver can't find the record Iterative Query | In this situation the DNS client will allow a DNS server to return the best answer it can. If the queried DNS server does not have a match for the query name, it will return a referral to a DNS server authoritative for a lower level of the domain namespace. The DNS client will then make a query to the referral address. This process continues with additional DNS servers down the query chain until either an error or timeout occurs Non-recursive Query | Typically this will occur when a DNS resolver client queries a DNS server for a record that it has access to either because it's authoritative for the record or the record exists inside of its cache. Typically, a DNS server will cache DNS records to prevent additional bandwidth consumption and load on upstream servers DNS Caching The purpose of caching is to temporarily stored data in a location that results in improvements in performance and reliability for data requests. DNS caching involves storing data closer to the requesting client so that the DNS query can be resolved earlier and additional queries further down the DNS lookup chain can be avoided, thereby improving load times and reducing bandwidth/CPU consumption. DNS data can be cached in a variety of locations, each of which will store DNS records for a set amount of time determined by a time-to-live (TTL) Public DNS Servers A free, global DNS resolution service that you can use as an alternative to your current DNS provider. It first appeared to simplify and direct internet traffic for users globally. Public DNS servers are accessible to anyone with an internet connection and are often provided by internet service providers or third-party companies. These servers are most commonly used by individuals and organizations that do not require a private network for their DNS queries. They offer a straightforward and efficient way to navigate the web, helping users access websites quickly and reliably. DNS Ports DNS Standard | Port: 53 | Protocol: TCP and UDP DoH DNS-over-HTTPS | Port: 443 | Protocol: HTTPS (HTTP + SSL/TLS) DoT DNS-over-TLS | Port: 853 | Protocol: TCP DoQ DNS-over-QUIC | Port: 853 | Protocol: UDP DNSCrypt | Port: 443, 4443, 5443 or 8443 | Protocol: TCP or UDP Providers Type Category DNS IPv4 DNS-over-HTTPS DNS-over-TLS DNS-over-QUIC DNSCrypt IPv4 DNS IPv6 DNSCrypt IPv6 Ctry Page Comments Google DNS Top 8.8.8.8 and 8.8.4.4 https://dns.google/dns-query tls://dns.google 2001:4860:4860::8888 and 2001:4860:4860::8844 https://developers.google.com/speed/public-dns/ Google DNS is a free, global DNS resolution service that you can use as an alternative to your current DNS provider Cloudflare DNS Standard Top 1.1.1.1 and 1.0.0.1 https://dns.cloudflare.com/dns-query (IPv6: https://dns.cloudflare.com/dns-query) tls://one.one.one.one 2606:4700:4700::1111 and 2606:4700:4700::1001 https://1.1.1.1/ Cloudflare DNS is a free and fast DNS service which functions as a recursive name server providing domain name resolution for any host on the Internet Cloudflare DNS Malware blocking only Top 1.1.1.2 and 1.0.0.2 https://security.cloudflare-dns.com/dns-query tls://security.cloudflare-dns.com 2606:4700:4700::1112 and 2606:4700:4700::1002 https://1.1.1.1/ Cloudflare DNS is a free and fast DNS service which functions as a recursive name server providing domain name resolution for any host on the Internet Cloudflare DNS Malware and adult content blocking Top 1.1.1.3 and 1.0.0.3 https://family.cloudflare-dns.com/dns-query tls://family.cloudflare-dns.com 2606:4700:4700::1113 and 2606:4700:4700::1003 https://1.1.1.1/ Cloudflare DNS is a free and fast DNS service which functions as a recursive name server providing domain name resolution for any host on the Internet OpenDNS (Cisco) Standard Top 208.67.222.222 and 208.67.220.220 https://doh.opendns.com/dns-query tls://dns.opendns.com 2.dnscrypt-cert.opendns.com (IP: 208.67.220.220) 2620:119:35::35 and 2620:119:53::53 2.dnscrypt-cert.opendns.com (IPv6: [2620:0:ccc::2]) https://www.opendns.com/ Cisco OpenDNS is a service which extends the DNS by incorporating features such as content filtering and phishing protection with a zero downtime OpenDNS (Cisco) FamilyShield Top 208.67.222.123 and 208.67.220.123 https://doh.familyshield.opendns.com/dns-query tls://familyshield.opendns.com 2.dnscrypt-cert.opendns.com (IP: 208.67.220.123) https://www.opendns.com/ Cisco OpenDNS is a service which extends the DNS by incorporating features such as content filtering and phishing protection with a zero downtime OpenDNS (Cisco) Sandbox Top 208.67.222.2 and 208.67.220.2 https://doh.sandbox.opendns.com/dns-query tls://sandbox.opendns.com 2620:0:ccc::2 IP: 2620:0:ccd::2 https://www.opendns.com/ Cisco OpenDNS is a service which extends the DNS by incorporating features such as content filtering and phishing protection with a zero downtime Quad9 DNS Standard Well Known 9.9.9.9 and 149.112.112.112 https://dns.quad9.net/dns-query tls://dns.quad9.net 2.dnscrypt-cert.quad9.net (IP: 9.9.9.9:8443) 2620:fe::fe IP: 2620:fe::fe:9 2.dnscrypt-cert.quad9.net (IPv6: [2620:fe::fe]:8443) https://quad9.net/ Quad9 DNS is a free, recursive, anycast DNS platform that provides high-performance, privacy, and security protection from phishing and spyware. Quad9 servers don't provide a censoring component. Regular DNS servers which provide protection from phishing and spyware. They include blocklists, DNSSEC validation, and other security features Quad9 DNS Unsecured Well Known 9.9.9.10 and 149.112.112.10 https://dns10.quad9.net/dns-query tls://dns10.quad9.net 2.dnscrypt-cert.quad9.net (IP: 9.9.9.10:8443) 2620:fe::10 IP: 2620:fe::fe:10 2.dnscrypt-cert.quad9.net (IPv6: [2620:fe::fe:10]:8443) https://quad9.net/ Quad9 DNS is a free, recursive, anycast DNS platform that provides high-performance, privacy, and security protection from phishing and spyware. Quad9 servers don't provide a censoring component. Unsecured DNS servers don't provide security blocklists, DNSSEC, or EDNS Client Subnet Quad9 DNS ECS support Well Known 9.9.9.11 and 149.112.112.11 https://dns11.quad9.net/dns-query tls://dns11.quad9.net 2.dnscrypt-cert.quad9.net (IP: 9.9.9.11:8443) 2620:fe::11 IP: 2620:fe::fe:11 2.dnscrypt-cert.quad9.net (IPv6: [2620:fe::11]:8443) https://quad9.net/ Quad9 DNS is a free, recursive, anycast DNS platform that provides high-performance, privacy, and security protection from phishing and spyware. Quad9 servers don't provide a censoring component. EDNS Client Subnet is a method that includes components of end-user IP address data in requests that are sent to authoritative DNS servers. It provides security blocklist, DNSSEC, EDNS Client Subnet AdGuard Default Well Known 94.140.14.14 and 94.140.15.15 https://dns.adguard-dns.com/dns-query tls://dns.adguard-dns.com quic://dns.adguard-dns.com 2.dnscrypt.default.ns1.adguard.com (IP: 94.140.14.14:5443) 2a10:50c0::ad1:ff and 2a10:50c0::ad2:ff 2.dnscrypt.default.ns1.adguard.com (IPv6: [2a10:50c0::ad1:ff]:5443) https://adguard-dns.io/welcome.html AdGuard DNS is an alternative solution for ad blocking, privacy protection, and parental control. It provides the necessary number of protection features against online ads, trackers, and phishing, no matter what platform and device you use AdGuard Family Protection Well Known 94.140.14.15 and 94.140.15.16 https://family.adguard-dns.com/dns-query tls://family.adguard-dns.com quic://family.adguard-dns.com 2.dnscrypt.family.ns1.adguard.com (IP: 94.140.14.15:5443) 2a10:50c0::bad1:ff and 2a10:50c0::bad2:ff 2.dnscrypt.family.ns1.adguard.com (IPv6: [2a10:50c0::bad1:ff]:5443) https://adguard-dns.io/welcome.html AdGuard DNS is an alternative solution for ad blocking, privacy protection, and parental control. It provides the necessary number of protection features against online ads, trackers, and phishing, no matter what platform and device you use AdGuard Non-filtering Well Known 94.140.14.140 and 94.140.14.141 https://unfiltered.adguard-dns.com/dns-query tls://unfiltered.adguard-dns.com quic://unfiltered.adguard-dns.com 2.dnscrypt.unfiltered.ns1.adguard.com (IP: 94.140.14.140:5443) 2a10:50c0::1:ff and 2a10:50c0::2:ff 2.dnscrypt.unfiltered.ns1.adguard.com (IPv6: [2a10:50c0::1:ff]:5443) https://adguard-dns.io/welcome.html AdGuard DNS is an alternative solution for ad blocking, privacy protection, and parental control. It provides the necessary number of protection features against online ads, trackers, and phishing, no matter what platform and device you use 0ms DNS Relevant https://0ms.dev/dns-query https://0ms.dev/ DNS is a global DNS resolution service provided by 0ms Group as an alternative to your current DNS provider. It uses OISD Big as the basic filter to give everyone a more secure environment. It is designed with various optimizations, such as HTTP/3, caching, and more. It leverages machine learning to protect users from potential security threats while also optimizing itself over time 360 Secure DNS Relevant 101.226.4.6 and 218.30.118.6 https://doh.360.cn/dns-query tls://dot.360.cn 123.125.81.6 and 140.207.198.6 CN Ali DNS Relevant 223.5.5.5 and 223.6.6.6 https://dns.alidns.com/dns-query tls://dns.alidns.com quic://dns.alidns.com:853 2400:3200::1 and 2400:3200:baba::1 https://alidns.com/ Ali DNS is a free recursive DNS service that committed to providing fast, stable and secure DNS resolution for the majority of Internet users. It includes AliGuard facility to protect users from various attacks and threats BebasDNS by BebasID Security Relevant https://antivirus.bebasid.com/dns-query tls://antivirus.bebasid.com:853 https://github.com/bebasid/bebasdns BebasDNS is a free and neutral public resolver based in Indonesia which supports OpenNIC domain. Created by Komunitas Internet Netral Indonesia (KINI) to serve Indonesian user with free and neutral internet connection BebasDNS by BebasID Family Relevant https://internetsehat.bebasid.com/dns-query tls://internetsehat.bebasid.com:853 2.dnscrypt-cert.internetsehat.bebasid.com (IP: 103.87.68.196:8443) https://github.com/bebasid/bebasdns BebasDNS is a free and neutral public resolver based in Indonesia which supports OpenNIC domain. Created by Komunitas Internet Netral Indonesia (KINI) to serve Indonesian user with free and neutral internet connection BebasDNS by BebasID Family With Ad Filtering Relevant https://internetsehat.bebasid.com/adblock tls://family-adblock.bebasid.com:853 https://github.com/bebasid/bebasdns BebasDNS is a free and neutral public resolver based in Indonesia which supports OpenNIC domain. Created by Komunitas Internet Netral Indonesia (KINI) to serve Indonesian user with free and neutral internet connection BebasDNS by BebasID OISD Filter Relevant https://dns.bebasid.com/dns-oisd tls://oisd.dns.bebasid.com:853 https://github.com/bebasid/bebasdns BebasDNS is a free and neutral public resolver based in Indonesia which supports OpenNIC domain. Created by Komunitas Internet Netral Indonesia (KINI) to serve Indonesian user with free and neutral internet connection BebasDNS by BebasID Hagezi Multi Normal Filter Relevant https://dns.bebasid.com/dns-hagezi tls://hagezi.dns.bebasid.com:853 https://github.com/bebasid/bebasdns BebasDNS is a free and neutral public resolver based in Indonesia which supports OpenNIC domain. Created by Komunitas Internet Netral Indonesia (KINI) to serve Indonesian user with free and neutral internet connection BebasDNS by BebasID Unfiltered Relevant https://dns.bebasid.com/unfiltered tls://unfiltered.dns.bebasid.com:853 https://github.com/bebasid/bebasdns BebasDNS is a free and neutral public resolver based in Indonesia which supports OpenNIC domain. Created by Komunitas Internet Netral Indonesia (KINI) to serve Indonesian user with free and neutral internet connection BebasDNS by BebasID Default Relevant https://dns.bebasid.com/dns-query tls://dns.bebasid.com:853 2.dnscrypt-cert.dns.bebasid.com (IP: 103.87.68.194:8443) https://github.com/bebasid/bebasdns BebasDNS is a free and neutral public resolver based in Indonesia which supports OpenNIC domain. Created by Komunitas Internet Netral Indonesia (KINI) to serve Indonesian user with free and neutral internet connection CFIEC Public DNS Relevant https://dns.cfiec.net/dns-query tls://dns.cfiec.net 240C::6666 and 240C::6644 IPv6-based anycast DNS service with strong security capabilities and protection from spyware, malicious websites. It supports DNS64 to provide domain name resolution only for IPv6 users CleanBrowsing Adult Filter Relevant 185.228.168.10 and 185.228.169.11 https://doh.cleanbrowsing.org/doh/adult-filter/ tls://adult-filter-dns.cleanbrowsing.org cleanbrowsing.org (IP: 185.228.168.10:8443) 2a0d:2a00:1::1 and 2a0d:2a00:2::1 cleanbrowsing.org (IPv6: [2a0d:2a00:1::1]:8443) https://cleanbrowsing.org/ CleanBrowsing is a DNS service which provides customizable filtering. This service offers a safe way to browse the web without inappropriate content CleanBrowsing Family Filter Relevant 185.228.168.168 and 185.228.169.168 https://doh.cleanbrowsing.org/doh/family-filter/ tls://family-filter-dns.cleanbrowsing.org cleanbrowsing.org (IP: 185.228.168.168:8443) 2a0d:2a00:1:: and 2a0d:2a00:2:: cleanbrowsing.org (IPv6: [2a0d:2a00:1::]:8443) https://cleanbrowsing.org/ CleanBrowsing is a DNS service which provides customizable filtering. This service offers a safe way to browse the web without inappropriate content CleanBrowsing Security Filter Relevant 185.228.168.9 and 185.228.169.9 https://doh.cleanbrowsing.org/doh/security-filter/ tls://security-filter-dns.cleanbrowsing.org 2a0d:2a00:1::2 and 2a0d:2a00:2::2 https://cleanbrowsing.org/ CleanBrowsing is a DNS service which provides customizable filtering. This service offers a safe way to browse the web without inappropriate content Comodo Secure DNS Relevant 8.26.56.26 and 8.20.247.20 2.dnscrypt-cert.shield-2.dnsbycomodo.com (IP: 8.20.247.2) https://comodo.com/secure-dns/ Comodo Secure DNS is a domain name resolution service that resolves your DNS requests through worldwide network of DNS servers. Removes excessive ads and protects from phishing and spyware ControlD Block malware Relevant 76.76.2.1 https://freedns.controld.com/p1 tls://p1.freedns.controld.com https://controld.com/free-dns ControlD is a customizable DNS service with proxy capabilities. This means it not only blocks things (ads, porn, etc.), but can also unblock websites and services ControlD Block malware + ads Relevant 76.76.2.2 https://freedns.controld.com/p2 tls://p2.freedns.controld.com https://controld.com/free-dns ControlD is a customizable DNS service with proxy capabilities. This means it not only blocks things (ads, porn, etc.), but can also unblock websites and services ControlD Block malware + ads + social Relevant 76.76.2.3 https://freedns.controld.com/p3 tls://p3.freedns.controld.com https://controld.com/free-dns ControlD is a customizable DNS service with proxy capabilities. This means it not only blocks things (ads, porn, etc.), but can also unblock websites and services ControlD Non-filtering Relevant 76.76.2.0 and 76.76.10.0 https://freedns.controld.com/p0 p0.freedns.controld.com 2606:1a40:: and 2606:1a40:1:: https://controld.com/free-dns ControlD is a customizable DNS service with proxy capabilities. This means it not only blocks things (ads, porn, etc.), but can also unblock websites and services DNS Privacy Run by the Stubby developers Relevant tls://getdnsapi.net (IP: 185.49.141.37 and IPv6: 2a04:b900:0:100::37) https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. DNS servers run by the Stubby developers DNS Privacy Run by the Stubby developers | Provider: Surfnet Relevant tls://dnsovertls.sinodun.com (IP: 145.100.185.15 and IPv6: 2001:610:1:40ba:145:100:185:15) https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. DNS servers run by the Stubby developers DNS Privacy Run by the Stubby developers | Provider: Surfnet Relevant tls://dnsovertls1.sinodun.com (IP: 145.100.185.16 and IPv6: 2001:610:1:40ba:145:100:185:16) https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. DNS servers run by the Stubby developers DNS Privacy No-logging policy | Provider: UncensoredDNS Relevant tls://unicast.censurfridns.dk (IP: 89.233.43.71 and IPv6: 2a01:3a0:53:53::0) DK https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy | Provider: UncensoredDNS Relevant tls://anycast.censurfridns.dk (IP: 91.239.100.100 and IPv6: 2001:67c:28a4::) DK https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy | Provider: dkg Relevant tls://dns.cmrg.net (IP: 199.58.81.218 and IPv6: 2001:470:1c:76d::53) https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy Relevant tls://dns.larsdebruin.net (IP: 51.15.70.167) https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy Relevant tls://dns-tls.bitwiseshift.net (IP: 81.187.221.24 and IPv6: 2001:8b0:24:24::24) https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy Relevant tls://ns1.dnsprivacy.at (IP: 94.130.110.185 and IPv6: 2a01:4f8:c0c:3c03::2) AT https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy Relevant tls://ns2.dnsprivacy.at (IP: 94.130.110.178 and IPv6: 2a01:4f8:c0c:3bfc::2) AT https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy Relevant tls://dns.bitgeek.in (IP: 139.59.51.46) IN https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy Relevant tls://dns.neutopia.org (IP: 89.234.186.112 and IPv6: 2a00:5884:8209::2) https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy | Provider: Go6Lab Relevant tls://privacydns.go6lab.si (IPv6: 2001:67c:27e4::35) SI https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy No-logging policy Relevant tls://dot.securedns.eu (IP: 146.185.167.43 and IPv6: 2a03:b0c0:0:1010::e9a:3001) EU https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. Other DNS servers with no-logging policy DNS Privacy Minimal logging/restrictions | Provider: NIC Chile Relevant tls://dnsotls.lab.nic.cl (IP: 200.1.123.46 and IPv6: 2001:1398:1:0:200:1:123:46) CL https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. These servers use some logging, self-signed certs or no support for strict mode DNS Privacy Minimal logging/restrictions | Provider: OARC Relevant tls://tls-dns-u.odvr.dns-oarc.net (IP: 184.105.193.78 and IPv6: 2620:ff:c000:0:1::64:25) https://dnsprivacy.org/ A collaborative open project to promote, implement, and deploy DNS Privacy. These servers use some logging, self-signed certs or no support for strict mode DNS.SB Relevant 185.222.222.222 and 45.11.45.11 https://doh.dns.sb/dns-query tls://dot.sb 2a09:: and 2a11:: SB https://dns.sb/ DNS.SB provides free DNS service without logging and with DNSSEC enabled DNSPod Public DNS+ Relevant 119.29.29.29 and 119.28.28.28 https://doh.pub/dns-query tls://dot.pub https://www.dnspod.com/ DNSPod Public DNS+ is a privacy-friendly DNS provider with years of experience in domain name resolution services development, it aims to provide users more rapid, accurate and stable recursive resolution service DNSPod Public DNS+ Relevant https://dns.pub/dns-query https://www.dnspod.com/ DNSPod Public DNS+ is a privacy-friendly DNS provider with years of experience in domain name resolution services development, it aims to provide users more rapid, accurate and stable recursive resolution service DNSWatchGO Relevant 54.174.40.213 and 52.3.100.184 https://www.watchguard.com/wgrd-products/dnswatchgo DNSWatchGO is a DNS service by WatchGuard that prevents people from interacting with malicious content DeCloudUs DNS Relevant https://dns.decloudus.com/dns-query tls://dns.decloudus.com 2.dnscrypt-cert.DeCloudUs-test (IP: 78.47.212.211:9443) 2.dnscrypt-cert.DeCloudUs-test (IPv6: [2a01:4f8:13a:250b::30]:9443) https://decloudus.com/ DeCloudUs DNS is a DNS service that lets you block anything you wish while by default protecting you and your family from ads, trackers, malware, phishing, malicious sites, and much more Dyn DNS Relevant 216.146.35.35 and 216.146.36.36 https://help.dyn.com/internet-guide-setup/ Dyn DNS is a free alternative DNS service by Dyn Freenom World Relevant 80.80.80.80 and 80.80.81.81 https://freenom.world/en/index.html Freenom World is a free anonymous DNS resolver by Freenom World Hurricane Electric Public Recursor Relevant 74.82.42.42 https://ordns.he.net/dns-query tls://ordns.he.net 2001:470:20::2 https://dns.he.net/ Hurricane Electric Public Recursor is a free alternative DNS service by Hurricane Electric with anycast Mullvad Ad blocking Relevant https://adblock.dns.mullvad.net/dns-query tls://adblock.dns.mullvad.net https://mullvad.net/en/help/dns-over-https-and-dns-over-tls/ Mullvad provides publicly accessible DNS with QNAME minimization, endpoints located in Germany, Singapore, Sweden, United Kingdom and United States (Dallas & New York) Mullvad Non-filtering Relevant https://dns.mullvad.net/dns-query tls://dns.mullvad.net https://mullvad.net/en/help/dns-over-https-and-dns-over-tls/ Mullvad provides publicly accessible DNS with QNAME minimization, endpoints located in Germany, Singapore, Sweden, United Kingdom and United States (Dallas & New York) Mullvad Ad + malware blocking Relevant https://base.dns.mullvad.net/dns-query tls://base.dns.mullvad.net https://mullvad.net/en/help/dns-over-https-and-dns-over-tls/ Mullvad provides publicly accessible DNS with QNAME minimization, endpoints located in Germany, Singapore, Sweden, United Kingdom and United States (Dallas & New York) Mullvad Ad + malware + social media blocking Relevant https://extended.dns.mullvad.net/dns-query tls://extended.dns.mullvad.net https://mullvad.net/en/help/dns-over-https-and-dns-over-tls/ Mullvad provides publicly accessible DNS with QNAME minimization, endpoints located in Germany, Singapore, Sweden, United Kingdom and United States (Dallas & New York) Mullvad Ad + malware + adult + gambling blocking Relevant https://family.dns.mullvad.net/dns-query tls://family.dns.mullvad.net https://mullvad.net/en/help/dns-over-https-and-dns-over-tls/ Mullvad provides publicly accessible DNS with QNAME minimization, endpoints located in Germany, Singapore, Sweden, United Kingdom and United States (Dallas & New York) Mullvad Ad + malware + adult + gambling + social media blocking Relevant https://all.dns.mullvad.net/dns-query tls://all.dns.mullvad.net https://mullvad.net/en/help/dns-over-https-and-dns-over-tls/ Mullvad provides publicly accessible DNS with QNAME minimization, endpoints located in Germany, Singapore, Sweden, United Kingdom and United States (Dallas & New York) Nawala Childprotection DNS Relevant 180.131.144.144 and 180.131.145.145 2.dnscrypt-cert.nawala.id (IP: 180.131.144.144) http://nawala.id/ Nawala Childprotection DNS is an anycast Internet filtering system that protects children from inappropriate websites and abusive contents Neustar Recursive DNS Reliability & Performance 2 Relevant 156.154.70.5 and 156.154.71.5 2610:a1:1018::5 and 2610:a1:1019::5 https://www.security.neustar/digital-performance/dns-services/recursive-dns Neustar Recursive DNS is a free cloud-based recursive DNS service that delivers fast and reliable access to sites and online applications with built-in security and threat intelligence. These servers provide reliable and fast DNS lookups without blocking any specific categories and also prevent redirecting NXDomain (non-existent domain) responses to landing pages Neustar Recursive DNS Threat Protection Relevant 156.154.70.2 and 156.154.71.2 2610:a1:1018::2 and 2610:a1:1019::2 https://www.security.neustar/digital-performance/dns-services/recursive-dns Neustar Recursive DNS is a free cloud-based recursive DNS service that delivers fast and reliable access to sites and online applications with built-in security and threat intelligence. These servers provide protection against malicious domains and also include "Reliability & Performance" features Neustar Recursive DNS Family Secure Relevant 156.154.70.3 and 156.154.71.3 2610:a1:1018::3 and 2610:a1:1019::3 https://www.security.neustar/digital-performance/dns-services/recursive-dns Neustar Recursive DNS is a free cloud-based recursive DNS service that delivers fast and reliable access to sites and online applications with built-in security and threat intelligence. These servers provide adult content blocking and also include "Reliability & Performance" + "Threat Protection" features Neustar Recursive DNS Business Secure Relevant 156.154.70.4 and 156.154.71.4 2610:a1:1018::4 and 2610:a1:1019::4 https://www.security.neustar/digital-performance/dns-services/recursive-dns Neustar Recursive DNS is a free cloud-based recursive DNS service that delivers fast and reliable access to sites and online applications with built-in security and threat intelligence. These servers provide blocking unwanted and time-wasting content and also include "Reliability & Performance" + "Threat Protection" + "Family Secure" features Neustar Recursive DNS Reliability & Performance 1 Relevant 156.154.70.1 and 156.154.71.1 2610:a1:1018::1 and 2610:a1:1019::1 https://www.security.neustar/digital-performance/dns-services/recursive-dns Neustar Recursive DNS is a free cloud-based recursive DNS service that delivers fast and reliable access to sites and online applications with built-in security and threat intelligence. These servers provide reliable and fast DNS lookups without blocking any specific categories NextDNS Anycast Relevant https://anycast.dns.nextdns.io tls://anycast.dns.nextdns.io https://nextdns.io/ NextDNS provides publicly accessible non-filtering resolvers without logging in addition to its freemium configurable filtering resolvers with optional logging NextDNS Ultra-low latency Relevant https://dns.nextdns.io tls://dns.nextdns.io https://nextdns.io/ NextDNS provides publicly accessible non-filtering resolvers without logging in addition to its freemium configurable filtering resolvers with optional logging OpenBLD.net DNS Strict Filtering (RIC) Relevant https://ric.openbld.net/dns-query tls://ric.openbld.net https://openbld.net/ OpenBLD.net DNS — Anycast/GeoDNS DNS-over-HTTPS, DNS-over-TLS resolvers with blocking: advertising, tracking, adware, malware, malicious activities and phishing companies, blocks ~1M domains. Has 24h/48h logs for DDoS/Flood attack mitigation. More strictly filtering policies with blocking — ads, marketing, tracking, clickbait, coinhive, malicious, and phishing domains OpenBLD.net DNS Adaptive Filtering (ADA) Relevant https://ada.openbld.net/dns-query tls://ada.openbld.net https://openbld.net/ OpenBLD.net DNS — Anycast/GeoDNS DNS-over-HTTPS, DNS-over-TLS resolvers with blocking: advertising, tracking, adware, malware, malicious activities and phishing companies, blocks ~1M domains. Has 24h/48h logs for DDoS/Flood attack mitigation. Recommended for most users, very flexible filtering with blocking most ads networks, ad-tracking, malware and phishing domains RethinkDNS Non-filtering Relevant https://basic.rethinkdns.com/ tls://max.rethinkdns.com https://www.rethinkdns.com/configure Safe DNS Relevant 195.46.39.39 and 195.46.39.40 https://www.safedns.com/ Safe Surfer Relevant 104.155.237.225 and 104.197.28.121 2.dnscrypt-cert.safesurfer.co.nz (IP: 104.197.28.121) NZ https://www.safesurfer.co.nz/ Verisign Public DNS Relevant 64.6.64.6 and 64.6.65.6 2620:74:1b::1:1 and 2620:74:1c::2:2 https://www.verisign.com/security-services/public-dns/ Wikimedia DNS Relevant https://wikimedia-dns.org/dns-query tls://wikimedia-dns.org (IP: 185.71.138.138 and IPv6: 2001:67c:930::1) https://meta.wikimedia.org/wiki/Wikimedia_DNS dns0.eu Relevant 193.110.81.0 and 185.253.5.0 https://zero.dns0.eu/ tls://zero.dns0.eu quic://zero.dns0.eu EU https://www.dns0.eu/ dns0.eu is a free, sovereign and GDPR-compliant recursive DNS resolver with a strong focus on security to protect the citizens and organizations of the European Union 114DNS Family Regional 114.114.114.110 and 114.114.115.110 https://www.114dns.com/ 114DNS Normal Regional 114.114.114.114 and 114.114.115.115 https://www.114dns.com/ 114DNS Safe Regional 114.114.114.119 and 114.114.115.119 https://www.114dns.com/ Applied Privacy DNS Regional https://doh.applied-privacy.net/query tls://dot1.applied-privacy.net https://applied-privacy.net/ ByteDance Public DNS Regional 180.184.1.1 and 180.184.2.2 CIRA Canadian Shield DNS Protected Regional 149.112.121.20 and 149.112.122.20 https://protected.canadianshield.cira.ca/dns-query tls://protected.canadianshield.cira.ca (IP: 149.112.121.20 and IPv6: 2620:10A:80BB::20) 2620:10A:80BB::20 and 2620:10A:80BC::20 CA https://www.cira.ca/cybersecurity-services/canadianshield/how-works CIRA Canadian Shield DNS Family Regional 149.112.121.30 and 149.112.122.30 https://family.canadianshield.cira.ca/dns-query tls://family.canadianshield.cira.ca (IP: 149.112.121.30 and IPv6: 2620:10A:80BB::30) 2620:10A:80BB::30 and 2620:10A:80BC::30 CA https://www.cira.ca/cybersecurity-services/canadianshield/how-works CIRA Canadian Shield DNS Private Regional 149.112.121.10 and 149.112.122.10 https://private.canadianshield.cira.ca/dns-query tls://private.canadianshield.cira.ca (IP: 149.112.121.10 and IPv6: 2620:10A:80BB::10) 2620:10A:80BB::10 and 2620:10A:80BC::10 CA https://www.cira.ca/cybersecurity-services/canadianshield/how-works CZ.NIC ODVR Regional 193.17.47.1 and 185.43.135.1 https://odvr.nic.cz/doh tls://odvr.nic.cz 2001:148f:ffff::1 and 2001:148f:fffe::1 CZ https://www.nic.cz/odvr/ Comss.one DNS Regional https://dns.controld.com/comss tls://comss.dns.controld.com quic://comss.dns.controld.com RU https://www.comss.ru/page.php?id=7315 DNS for Family Regional 94.130.180.225 and 78.47.64.161 https://dns-doh.dnsforfamily.com/dns-query tls://dns-dot.dnsforfamily.com quic://dnsforfamily.com (IP: 94.130.180.225) dnsforfamily.com (IP: 94.130.180.225) 2a01:4f8:1c0c:40db::1 and 2a01:4f8:1c17:4df8::1 dnsforfamily.com (IPv6: [2a01:4f8:1c0c:40db::1]) https://dnsforfamily.com/ Digitale Gesellschaft DNS Regional https://dns.digitale-gesellschaft.ch/dns-query (IP: 185.95.218.42 and IPv6: 2a05:fc84::42) tls://dns.digitale-gesellschaft.ch (IP: 185.95.218.43 and IPv6: 2a05:fc84::43) CH https://www.digitale-gesellschaft.ch/dns/ Fondation Restena DNS Regional https://kaitain.restena.lu/dns-query (IP: 158.64.1.29 and IPv6: 2001:a18:1::29) tls://kaitain.restena.lu (IP: 158.64.1.29 and IPv6: 2001:a18:1::29) LU https://www.restena.lu/en/service/public-dns-resolver IIJ.JP DNS Regional https://public.dns.iij.jp/dns-query tls://public.dns.iij.jp JP https://public.dns.iij.jp/ JupitrDNS Regional 35.215.30.118 and 35.215.48.207 https://dns.jupitrdns.com/dns-query tls://dns.jupitrdns.com quic://dns.jupitrdns.com https://jupitrdns.com/ LibreDNS Regional 88.198.92.222 https://doh.libredns.gr/dns-query tls://dot.libredns.gr (IP: 116.202.176.26) GR https://libredns.gr/ LibreDNS Ads Regional https://doh.libredns.gr/ads GR https://libredns.gr/ OneDNS Pure Edition Regional 117.50.10.10 and 52.80.52.52 https://www.onedns.net/ OneDNS Block Edition Regional 117.50.11.11 and 52.80.66.66 https://www.onedns.net/ OpenNIC DNS Regional 217.160.70.42 2001:8d8:1801:86e7::1 https://www.opennic.org/ Quad101 Regional 101.101.101.101 and 101.102.103.104 https://dns.twnic.tw/dns-query tls://101.101.101.101 2001:de4::101 and 2001:de4::102 TW https://101.101.101.101/ SWITCH DNS Regional dns.switch.ch IP: 130.59.31.248 https://dns.switch.ch/dns-query tls://dns.switch.ch (IP: 130.59.31.248 and IPv6: 2001:620:0:ff::2) dns.switch.ch IPv6: 2001:620:0:ff::2 CH https://www.switch.ch/security/info/public-dns/ SkyDNS RU Regional 193.58.251.251 RU https://www.skydns.ru/en/ Yandex DNS Basic Regional 77.88.8.8 and 77.88.8.1 https://common.dot.dns.yandex.net/dns-query tls://common.dot.dns.yandex.net 2a02:6b8::feed:0ff and 2a02:6b8:0:1::feed:0ff RU https://dns.yandex.com/ Yandex DNS Safe Regional 77.88.8.88 and 77.88.8.2 https://safe.dot.dns.yandex.net/dns-query tls://safe.dot.dns.yandex.net 2a02:6b8::feed:bad and 2a02:6b8:0:1::feed:bad RU https://dns.yandex.com/ Yandex DNS Family Regional 77.88.8.3 and 77.88.8.7 https://family.dot.dns.yandex.net/dns-query tls://family.dot.dns.yandex.net 2a02:6b8::feed:a11 and 2a02:6b8:0:1::feed:a11 RU https://dns.yandex.com/ AhaDNS Small (Risky) 5.2.75.75 https://doh.nl.ahadns.net/dns-query tls://dot.nl.ahadns.net 2a04:52c0:101:75::75 NL https://ahadns.com/ AhaDNS Small (Risky) 45.67.219.208 https://doh.la.ahadns.net/dns-query tls://dot.la.ahadns.net 2a04:bdc7:100:70::70 US https://ahadns.com/ Arapurayil Small (Risky) Host: https://dns.arapurayil.com/dns-query 2.dnscrypt-cert.dns.arapurayil.com (IP: 3.7.156.128) https://dns.arapurayil.com/ BlackMagicc DNS Small (Risky) 103.178.234.160 https://robin.techomespace.com/dns-query tls://robin.techomespace.com:853 2405:19c0:2:ea2e::1 https://bento.me/blackmagicc Captnemo DNS Small (Risky) 2.dnscrypt-cert.captnemo.in (IP: 139.59.48.222:4434) IN https://captnemo.in/dnscrypt/ DNS Forge Small (Risky) 176.9.93.198 and 176.9.1.117 https://dnsforge.de/dns-query tls://dnsforge.de 2a01:4f8:151:34aa::198 and 2a01:4f8:141:316d::117 DE https://dnsforge.de/ DNSWarden Small (Risky) https://dns.dnswarden.com/uncensored tls://uncensored.dns.dnswarden.com https://dnswarden.com/customfilter.html Dandelion Sprout's Official DNS Server Small (Risky) https://dandelionsprout.asuscomm.com:2501/dns-query tls://dandelionsprout.asuscomm.com:853 quic://dandelionsprout.asuscomm.com:48582 https://github.com/DandelionSprout/adfilt/tree/master/Dandelion%20Sprout's%20Official%20DNS%20Server FFMUC DNS Small (Risky) https://doh.ffmuc.net/dns-query tls://dot.ffmuc.net 2.dnscrypt-cert.ffmuc.net (IP: 5.1.66.255:8443) 2.dnscrypt-cert.ffmuc.net (IPv6: [2001:678:e68:f000::]:8443) https://ffmuc.net/ Lelux DNS Small (Risky) https://resolver-eu.lelux.fi/dns-query tls://resolver-eu.lelux.fi FI https://lelux.fi/resolver/ OSZX DNS OSZX DNS Small (Risky) 51.38.83.141 https://dns.oszx.co/dns-query tls://dns.oszx.co 2.dnscrypt-cert.oszx.co (IP: 51.38.83.141:5353) 2001:41d0:801:2000::d64 2.dnscrypt-cert.oszx.co (IPv6: [2001:41d0:801:2000::d64]:5353) UK https://dns.oszx.co/ OSZX DNS PumpleX Small (Risky) 51.38.82.198 https://dns.pumplex.com/dns-query tls://dns.pumplex.com 2.dnscrypt-cert.pumplex.com (IP: 51.38.82.198:5353) 2001:41d0:801:2000::1b28 2.dnscrypt-cert.pumplex.com (IPv6: [2001:41d0:801:2000::1b28]:5353) UK https://dns.oszx.co/ Privacy-First DNS Japan Server Small (Risky) 172.104.93.80 https://jp.tiar.app/dns-query tls://jp.tiar.app 2.dnscrypt-cert.jp.tiar.app (IP: 172.104.93.80) 2400:8902::f03c:91ff:feda:c514 Provider: 2.dnscrypt-cert.jp.tiar.app IP: [2400:8902::f03c:91ff:feda:c514] JP https://tiarap.org/ Privacy-First DNS Singapore Server Small (Risky) 174.138.21.128 https://doh.tiar.app/dns-query tls://dot.tiar.app quic://doh.tiar.app 2.dnscrypt-cert.dns.tiar.app (IP: 174.138.21.128) 2400:6180:0:d0::5f6e:4001 2.dnscrypt-cert.dns.tiar.app (IPv6: [2400:6180:0:d0::5f6e:4001]) SG https://tiarap.org/ Privacy-First DNS Cached via third-party Small (Risky) https://jp.tiarap.org/dns-query JP https://tiarap.org/ Privacy-First DNS Cached via third-party Small (Risky) https://doh.tiarap.org/dns-query SG https://tiarap.org/ Seby DNS Small (Risky) 45.76.113.31 tls://dot.seby.io 2.dnscrypt-cert.dns.seby.io (IP: 45.76.113.31) RS https://dns.seby.io/ fvz DNS Small (Risky) 2.dnscrypt-cert.dnsrec.meo.ws (IP: 185.121.177.177:5353) http://meo.ws/ fvz DNS Small (Risky) 2.dnscrypt-cert.dnsrec.meo.ws (IP: 169.239.202.202:5353) http://meo.ws/ ibksturm DNS Small (Risky) https://ibksturm.synology.me/dns-query (IP: 213.196.191.96) tls://ibksturm.synology.me (IP: 213.196.191.96) quic://ibksturm.synology.me (IP: 213.196.191.96) 2.dnscrypt-cert.ibksturm (IP: 213.196.191.96:8443) https://ibksturm.synology.me/ rDNS | Reverse DNS What is reverse DNS? A reverse DNS lookup is a DNS query for the domain name associated with a given IP address. This accomplishes the opposite of the more commonly used forward DNS lookup, in which the DNS system is queried to return an IP address. Standards from the Internet Engineering Task Force (IETF) suggest that every domain should be capable of reverse DNS lookup, but as reverse lookups are not critical to the normal function of the Internet, they are not a hard requirement. As such, reverse DNS lookups are not universally adopted. How does reverse DNS work? Reverse DNS lookups query DNS servers for a PTR (pointer) record; if the server does not have a PTR record, it cannot resolve a reverse lookup. PTR records store IP addresses with their segments reversed, and they append ".in-addr.arpa" to that. For example if a domain has an IP address of 192.0.2.1, the PTR record will store the domain's information under 1.2.0.192.in-addr.arpa. In IPv6, the latest version of the Internet Protocol, PTR records are stored within the ".ip6.arpa" domain instead of ".in-addr.arpa." What are reverse DNS lookups used for? Reverse lookups are commonly used by email servers. Email servers check and see if an email message came from a valid server before bringing it onto their network. Many email servers will reject messages from any server that does not support reverse lookups or from a server that is highly unlikely to be legitimate. Spammers often use IP addresses from hijacked machines, which means there will be no PTR record. Or, they may use dynamically assigned IP addresses that lead to server domains with highly generic names. Logging software also employs reverse lookups in order to provide users with human-readable domains in their log data, as opposed to a bunch of numeric IP addresses. mDNS | Multicast DNS What is multicast DNS? mDNS is meant to deal with having names for machines on local networks without needing to register them on DNS servers. This is especially useful when there are no DNS servers you can control – think of a home with a couple of devices who need to interact locally without going to the internet. Examples: Chromecast and network printers are some good examples. In the context of WebRTC, mDNS has been introduced to protect against the JavaScript application accessing the local IP addresses that are exchanged during ICE negotiation. This is achieved by the browser replacing its local IP addresses with random mDNS ones that it registers on the local network. ICE | Interactive Connectivity Establishment It is a standard method of NAT traversal used in WebRTC. It is defined in IETF RFC 5245. ICE deals with the process of connecting media through NATs by conducting connectivity checks. ICE collects all available candidates (local IP addresses, reflexive addresses – STUN ones and relayed addresses – TURN ones). All the collected addresses are then sent to the remote peer via SDP. Once the WebRTC Client has all the collected ICE addresses of itself and its peer, it starts initiating connectivity checks. These checks essentially try sending media over the various addresses until success. The downside of using ICE is the time it takes, which can be 10s of seconds. To run faster, a new mechanism was added in WebRTC called Trickle ICE. Ping | How to Ping a Specific Port? The Ping (Packet Internet or Inter-Network Groper) is a network tool for checking whether a remote system is up and running. In other words, the command determines if a certain IP address or a host are accessible. Ping uses a network layer protocol called Internet Control Message Protocol (ICMP) and is available on all operating systems. On the other hand, port numbers belong to transport layer protocols, such as TCP and UDP. Port numbers help identify where an Internet or other network message is forwarded when it arrives. Why Can't I Ping a Specific Port? Network devices use ICMP to send error messages and information on whether communication with an IP address is successful or not. ICMP differs from transport protocols as ICMP is not used to exchange data between systems. Ping uses ICMP packets, and ICMP does not use port numbers which means a port can’t be pinged . How Can I Ping a Specific Port? (Workaround) However, we can use ping with a similar intention to check if a port is open or not. Some network tools and utilities can simulate an attempt to establish a connection to a specific port and wait to see if the target host responds. If there is a response, the target port is open. If not, the target port is closed, or the host is unable to accept a connection because there is no service configured to listen for connections on that port. Tools to Ping a Port Telnet (Windows / Linux) On Windows, open the CMD Prompt (searching for "CMD") or Powershell (searching for "Powershell) On Linux, you can use the command directly at the prompt Command: telnet Example: telnet 10.0.0.100 8006 (Port 8006 is used by Proxmox) If the port is open, telnet establishes a connection. Otherwise, it states a failure NC | Netcat (Linux) Command: nc -vz Example: nc -vz 10.0.0.100 8006 (Port 8006 is used by Proxmox) The output informs the user if the connection to the specified port is successful or not. If it is successful, the port is open NMAP | Network Mapper (Linux) Command: nmap -p Example: nmap -p 8006 10.0.0.100 (Port 8006 is used by Proxmox) The output informs the user about the port’s state and service type, latency, and the time elapsed until the completion of the task To ping more than one port. Command: nmap -p Powershell (Windows) Open Powershell (searching for "Powershell) Command: Test-NetConnection -p Example: Test-NetConnection 10.0.0.100 -p 8006 (Port 8006 is used by Proxmox) If the port is open and the connection passes, the TCP test is successful. Otherwise, a warning message appears saying the TCP connection failed Installing the Tools Telnet (Windows / Linux) Ubuntu | Command: sudo apt install telnet CentOS/Fedora | Command: yum -y install telnet Windows | Check Here NC | Netcat (Linux) Debian, Ubuntu, and Mint Check if Netcat is installed| Command: netcat -h Fedora, Red Hat Enterprise Linux, and CentOS Check if Netcat is installed| Command: ncat -h If not installed | Command: sudo apt install netcat NMAP | Network Mapper (Linux) Check if NMAP is installed| Command: nmap -version If not installed Ubuntu or Debian | Command: sudo apt install nmap CentOS or RHEL | Command: sudo yum install nmap Telnet | Teletype Network Telnet is a network protocol that allows users to connect to and communicate with remote computers using a transmission control protocol/Internet protocol (TCP/IP) network. It provides a command-line interface that acts like a virtual terminal, allowing users to access a remote system as if they were physically there. It was developed in 1969 and has been an essential tool for connecting computers and devices remotely. Despite being an old protocol, it still plays a critical role in modern-day remote access solutions. Security Issue : Telnet is a popular choice for remote access because it's reliable and secure, and it's also easy to use and configure. However, it does have some security concerns because it lacks encryption and transmits data in clear text. This means that anyone with access to the network could potentially intercept and read the data, including passwords and sensitive data. Alternatives like SSH offer more secure remote management options. Common uses Remote management : Users can access and manage network nodes, such as servers, routers, and switches, from a distance Initial device setup : Users can set up network hardware Testing services : Users can test services Debugging email problems : Users can send emails directly from the server to detect errors Configuring servers : Users can quickly and easily implement changes to the directory structure, file access rights, or passwords Accessing legacy systems : Some legacy computer systems still rely on Telnet for remote access. It helps connect to these systems, run applications, process data, and manage resources. Troubleshooting network connectivity : It can be used to test connectivity to a network device or server. By establishing a Telnet connection to the device or server, you can check whether it’s reachable, identify any errors or connectivity issues, and diagnose network problems. How to use it to troubleshooting network connectivity You can check if a specific port is open simply: Open the PowerShell Typing the command: telnet Example: telnet 10.0.0.100 8006 (Port 8006 is used by Proxmox) If the port is open, telnet establishes a connection. Otherwise, it states a failure Installing Telnet Ubuntu Command: yum -y install telnet CentOS/Fedora Command: sudo apt install telnet Windows Open “Control Panel“ Open “Programs“ Select the “Turn Windows features on or off ” option Check the “Telnet Client” box Click “OK“. A box will appear that says “Windows features” and “Searching for required files“. When complete, the Telnet client should be installed in Windows NMAP | Network Mapper NMAP (Network Mapper) is a free and open source utility for network discovery and security auditing. Nmap uses raw IP packets in novel ways to determine: What hosts are available on the network What services (application name and version) those hosts are offering What operating systems (and OS versions) they are running What type of packet filters/firewalls are in use and other characteristics It was designed to rapidly scan large networks, but works fine against single hosts. Nmap runs on all major computer operating systems, and official binary packages are available for Linux, Windows, and Mac OS X. Installing NMAP on Linux Check if NMAP is installed| Command: nmap -version If not installed Ubuntu or Debian | Command: sudo apt install nmap CentOS or RHEL | Command: sudo yum install nmap Running NMAP Run TCP Scan | Command: nmap -sT Run Script to find Vulnerabilities | Command: nmap --script vuln Wireshark | Open-Source Network Packet Analyzer Wireshark, Originally named Ethereal but renamed in May 2006, is a free and open-source network packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education. A network packet analyzer presents captured packet data in as much detail as possible. You could think of a network packet analyzer as a measuring device for examining what’s happening inside a network cable, just like an electrician uses a voltmeter for examining what’s happening inside an electric cable (but at a higher level, of course). Intended Purposes Network administrators use it to troubleshoot network problems Network security engineers use it to examine security problems QA engineers use it to verify network applications Developers use it to debug protocol implementations People use it to learn network protocol internals What is not provided Wireshark isn’t an intrusion detection system Wireshark will not manipulate things on the network, it will only “measure” things from it Features Available for UNIX and Windows Capture live packet data from a network interface Open files containing packet data captured with tcpdump/WinDump, Wireshark, and many other packet capture programs Import packets from text files containing hex dumps of packet data Display packets with very detailed protocol information Save packet data captured Export some or all packets in a number of capture file formats Filter packets on many criteria Search for packets on many criteria Colorize packet display based on filters Create various statistics Capabilities Live capture from many different network media Wireshark can capture traffic from many different network media types, including Ethernet, Wireless LAN, Bluetooth, USB, and more The specific media types supported may be limited by several factors, including your hardware and operating system Import files from many other capture programs Wireshark can open packet captures from a large number of capture programs Export files for many other capture programs Wireshark can save captured packets in many formats, including those used by other capture programs Many protocol dissectors There are protocol dissectors (or decoders, as they are known in other products) for a great many protocols Ubuntu | Installing Wireshark Using the APT (Advanced Package Tool) Method) The software repository of Ubuntu includes Wireshark by default, which enables you to install the package using the APT. It is the easiest and most straightforward method. It ensures you have the latest version of Wireshark when the Ubuntu system is updated. Execute the following command in the Ubuntu terminal. Install the Wireshark | Command: sudo apt install wireshark You will be asked if a "non-superuser can capture packets". This means that a user other than the "root" user can run Wireshark. If you have another user, select "Yes " Add your user to the wireshark group | Command: sudo usermod -aG wireshark Example: sudo usermod -aG wireshark john01 If you use the "root" user, select "No " and you won't need to perform anything else OPTIONAL | If you want to change your "non-superuser packet capture" option later, use the Command: sudo dpkg-reconfigure wireshark-common Verify if the Wireshark was installed checking its version | Command: wireshark --version Launch the Wireshark | Command: sudo wireshark To uninstall Wireshark | Command: sudo apt-get remove --purge wireshark Using the PPA (Personal Package Archive) Method If the Ubuntu version of your computer is older, you can use the PPA maintained by the Wireshark developers. Add the official Wireshark PPA to your list of repositories |Command: sudo add-apt-repository ppa:wireshark-dev/stable -y Update the package list | Command: sudo apt update Install the Wireshark | Command: sudo apt install wireshark You will be asked if a "non-superuser can capture packets". This means that a user other than the "root" user can run Wireshark. If you have another user, select "Yes " Add your user to the wireshark group | Command: sudo usermod -aG wireshark Example: sudo usermod -aG wireshark john01 If you use the "root" user, select "No " and you won't need to perform anything else OPTIONAL | If you want to change your "non-superuser packet capture" option later, use the Command: sudo dpkg-reconfigure wireshark-common Verify if the Wireshark was installed checking its version | Command: wireshark --version Launch the Wireshark | Command: sudo wireshark To uninstall Wireshark | Command: sudo apt-get-repository –remove ppa:wireshark-dev/stable -y Network Protocols Network protocols are the sets of standards that allow two or more machines connected to the internet to communicate with each other. It works as a universal language, which can be interpreted by computers from any manufacturer, using any operating system. They are responsible for taking data transmitted over the network and dividing it into small pieces, which are called packets. Each packet carries source and destination addressing information. Protocols are also responsible for systematizing the establishment, control, traffic and closure phases. Key elements that define network protocols: Syntax: Represents the format of the data and the order in which it is presented Semantics: Refers to the meaning of each syntactic set that gives meaning to the message sent Timing: Defines an acceptable packet transmission speed Types of Network Protocols For communication between computers to be carried out correctly, both computers must be configured according to the same parameters and comply with the same communication standards. The network is divided into layers, each with a specific function. The different types of network protocols vary according to the type of service used and the corresponding layer. The main layers and their main protocol types: Application Layer: WWW, HTTP, SMTP, Telnet, FTP, SSH, NNTP, RDP, IRC, SNMP, POP3, IMAP, SIP, DNS, PING Transport Layer: TCP, UDP, RTP, DCCP, SCTP Network Layer: IPv4, IPv6, IPsec, ICMP Physical Link Layer: Ethernet, Modem, PPP, FDDi Transmission Control Protocol (TCP) TCP is a popular communication protocol which is used for communicating over a network. It divides any message into series of packets that are sent from source to destination and there it gets reassembled at the destination. Internet Protocol (IP) IP is designed explicitly as addressing protocol. It is mostly used with TCP. The IP addresses in packets help in routing them through different nodes in a network until it reaches the destination system. TCP/IP is the most popular protocol connecting the networks. User Datagram Protocol (UDP) UDP is a substitute communication protocol to Transmission Control Protocol implemented primarily for creating loss-tolerating and low-latency linking between different applications. Post office Protocol (POP) POP3 is designed for receiving incoming E-mails. Simple mail transport Protocol (SMTP) SMTP is designed to send and distribute outgoing E-Mail. File Transfer Protocol (FTP) FTP allows users to transfer files from one machine to another. Types of files may include program files, multimedia files, text files, and documents, etc. Hyper Text Transfer Protocol (HTTP) HTTP is designed for transferring a hypertext among two or more systems. HTML tags are used for creating links. These links may be in any form like text or images. HTTP is designed on Client-server principles which allow a client system for establishing a connection with the server machine for making a request. The server acknowledges the request initiated by the client and responds accordingly. Hyper Text Transfer Protocol Secure (HTTPS) HTTPS is abbreviated as Hyper Text Transfer Protocol Secure is a standard protocol to secure the communication among two computers one using the browser and other fetching data from web server. HTTP is used for transferring data between the client browser (request) and the web server (response) in the hypertext format, same in case of HTTPS except that the transferring of data is done in an encrypted format. So it can be said that https thwart hackers from interpretation or modification of data throughout the transfer of packets. SSL - Secure Sockets Layer It is an encryption-based Internet security protocol. It was first developed by Netscape in 1995 for the purpose of ensuring privacy, authentication, and data integrity in Internet communications. SSL is the predecessor to the modern TLS encryption used today. A website that implements SSL/TLS has "HTTPS" in its URL instead of "HTTP." TLS - Transport Layer Security It is a widely adopted security protocol designed to facilitate privacy and data security for communications over the Internet. A primary use case of TLS is encrypting the communication between web applications and servers, such as web browsers loading a website. TLS can also be used to encrypt other communications such as email, messaging, and voice over IP (VoIP). In this article we will focus on the role of TLS in web application security. TLS was proposed by the Internet Engineering Task Force (IETF), an international standards organization, and the first version of the protocol was published in 1999. The most recent version is TLS 1.3, which was published in 2018. Telnet Telnet is a set of rules designed for connecting one system with another. The connecting process here is termed as remote login. The system which requests for connection is the local computer, and the system which accepts the connection is the remote computer. Gopher Gopher is a collection of rules implemented for searching, retrieving as well as displaying documents from isolated sites. Gopher also works on the client/server principle. Protocols used by SAP Common Programming Interface for Communication (CPI-C) SAP uses Common Programming Interface for Communication (CPIC) protocol to transfer data between systems. CPIC is an SAP specific protocol. Open Data Protocol (OData) The Open Data Protocol (OData) is a standardized protocol for exposing and accessing information from various sources. OData is based on core protocols, including HTTP, AtomPub (Atom Publishing Protocol), XML, and JSON (Java Script Object Notation). MQTT - Message Queuing Telemetry Transport MQTT is a message protocol for machine-to-machine communication (M2M) and IoT. You can use the MQTT source system to set up a connection to an MQTT broker (MQTT server). It is most commonly run over TCP/IP stack, but there are MQTT implementations that use other protocols. The supported communication protocol between SAP S/4HANA and SAP Cloud Platform Enterprise Messaging will be MQTT (over Websocket). With the feature of Enterprise Event Enablement of S/4HANA, you can pass the S/4HANA event to the external systems via the middleware called SAP Cloud Platform Enterprise Messaging. HTTP vs MQTT: HTTP is typically a transient interface in which each request is a short-lived session. MQTT sessions are long-lived. Another important difference is that HTTP operates on a command-response basis. A command gets sent to the server and a response returns. TCP vs UDP | Protocol Comparison Whether your data is transferred quickly and in full depends on which network protocols you use, UDP or TCP. They both do the same job but in different ways. One is more reliable and the other one is faster. TCP (transmission control protocol) is connection-based, so it establishes a connection between the receiver and sender and maintains it while transferring data. It guarantees that the data arrives completely intact. UDP (User Datagram Protocol) is connectionless, so it doesn’t establish a prior connection between two parties. It has the potential to lose data along the way, but in return you’ll have much higher speeds. Reliability TCP: High UDP: Lower Speed TCP: Lower UDP: High Transfer Method TCP: Packets are delivered in a sequence UDP: Packets are delivered in a stream Error Detection and Correction TCP: Yes UDP: No Congestion Control TCP: Yes UDP: No Acknowledgement TCP: Yes UDP: Only the Checksum (Checksum is the final two bytes of the UDP header, a field that's used by the sender and receiver to check for data corruption) Warning : UDP is not recommended for transmitting large files. SSL vs TLS | Protocol Comparison Protocol Evolution : SSL 1.0 > SSL 2.0 > SSL 3.0 > TLS 1.0 > TLS 1.1 > TLS 1.2 > TLS 1.3 SSL (Secure Sockets Layer) Secure Sockets Layer (SSL) is a protocol that encrypts and secures data transmitted over the internet. SSL protects data from being intercepted by hackers and prevents them from stealing personal or financial information. SSL works by: Encryption: SSL encrypts data sent between a browser and a website or between two servers Authentication: SSL authenticates web servers. SSL initiates an authentication process between two devices called a handshake Integrity: SSL digitally signs data to verify that it hasn't been tampered with SSL was introduced by Netscape in 1995 and was the first widely used protocol for securing online transactions. Although it has been replaced by a more updated protocol called Transport Layer Security (TLS), SSL is still commonly used today. TLS (Transport Layer Security) Transport Layer Security (TLS) is a security protocol that encrypts data sent between computers over the internet. It's used to protect data from hackers and ensure that all parties involved in a transaction are who they claim to be. TLS has three main functions: Encryption: Hides sensitive data during transfer Authentication: Verifies the identities of the client and server Integrity: Verifies that data hasn't been tampered with or forged TLS is the most widely used security protocol today. It's primarily used to encrypt communication between web browsers and servers, but it can also secure email and other protocols. TLS handshakes are a multi-step process that involves the client authenticating the server and the client and server exchanging a shared secret. TLS replaced SSL in 2015 after SSL was compromised by vulnerabilities. Most people still use the term SSL because it's more widely known. Protocol Comparison Stands For SSL: Secure Sockets Layer TLS: Transport Layer Security Version History SSL: Replaced with TLS. SSL moved through versions 1.0, 2.0, and 3.0 TLS: Upgraded version of SSL. TLS has moved through versions 1.0, 1.1, 1.2, and 1.3 Algorithm SSL: Supports older algorithms with known security vulnerabilities TLS: Utilizes advanced encryption algorithms (Fortezza algorithm is not supported) Activity SSL: It is now considered deprecated due to significant vulnerabilities TLS: Currently the versions 1.2 and 1.3 are actively used due to its robust security Alert Messages SSL has only two types of alert messages. Alert messages are unencrypted TLS alert messages are encrypted and more diverse Message Authentication SSL: Uses Message Authentication Code (MAC) protocols TLS: Deploys Hashed Message Authentication Code (HMAC) protocols Cipher Suites SSL: Supports older algorithms with known security vulnerabilities TLS: Uses advanced encryption algorithms Handshake SSL: Handshake is complex and slow TLS: Handshake is simplified (it has fewer steps), faster, and more secure Connection SSL: Establishes connection using a port TLS: Establishes connection using protocol Public Cloud Services Comparison Cloud services are application and infrastructure resources that exist on the Internet. Third-party providers contract with subscribers for these services, allowing customers to leverage powerful computing resources without having to purchase or maintain hardware and software. Services Microsoft Azure Amazon AWS Google Cloud Analytics Azure Stream Analytics Amazon Kinesis Cloud Dataflow App Hosting Azure Cloud Services Amazon Elastic Beanstalk Google App Engine Automation Azure Automation AWS Opsworks Compute Engine Management Block Storage Azure Managed Storage Amazon Elastic Block Storage Persistent Disk Cloud Agnostic Container Azure AKS Amazon EKS GKE Cloud Specific Container Azure Container Service EC2 Container Service Container Engine Compliance Azure Trust Center AWS Cloud HSM Google Cloud Plataform Security Computing Virtual Machine Elastic Compute Cloud (EC2) Compute Engine Content Delivery Network (CDN) Azure CDN Amazon CloudFront Cloud CDN DNS Services Azure Traffic Manager AWS Route 53 Cloud DNS Identity & Access Management Azure Active Directory AWS Identity and Access Management Cloud Identity Access Management Key Management Services Azure Key Vault AWS KMS Google Cloud KMS Load Balancing Load Balancing for Azure Elastic Load Balancing Cloud Load Balancing Log Monitoring Azure Operational Insights Amazon CloudTrail Cloud Logging NoSQL Database Options Azure DocumentDB AWS DynamoDB Cloud Datastore Notifications Azure Notification Hub Amazon Simple Notification Service - Object Storage Azure Blob Storage Amazon Storage (S3) Cloud Storage Performance Monitoring Azure Application Insights Amazon CloudWatch Stackdriver Monitoring Private Connectivity Azure Express Route AWS Direct Connect Cloud Interconnect Relational Database Azure Relational Database Amazon RDS Cloud SQL Scaling Options Azure Autoscale Auto Scaling Auto Scaler Serverless Computing Azure Functions AWS Lambda Google Cloud Functions Virtual Network Azure Virtual Network Amazon VPC Cloud Virtual Network References: Palo Alto Networks (www.paloaltonetworks.com ); Wikipedia (www.wikipedia.org); Google (www.google.com ); Oracle (www.oracle.com ); Raspberry PI (www.raspberrypi.org ); Microsoft (www.microsoft.com ); CloudFlare (www.cloudflare.com ); NordVPN (nordvpn.com )

Finance Currency Types Account Master Data Document Split Currency Types T-Code : SPRO Path : IMG -> Financial Accounting -> Financial Accounting Global Settings -> Ledgers -> Ledger -> Define Settings for Ledgers and Currency Types Section : Currency Types SAP Version : SAP S/4 HANA 2020 Currency Types List 00 = Document Currency 01 = Document Currency, Group Valuation 02 = Document Currency, Profit Center Valuation 10 = Company Code Currency 11 = Company Code Currency, Group Valuation 12 = Company Code Currency, Profit Center Valuation 20 = Controlling Area Currency 30 = Group Currency 31 = Group Currency, Group Valuation 32 = Group Currency, Profit Center Valuation 40 = Hard Currency 50 = Index-Based Currency 60 = Global Company Currency 70 = Controlling Object Currency Currency Type in the Controlling Area The controlling area currency type determines which currency is allowed as controlling area currency and whether the CO area currency can differ from the currency of the assined company codes. CO area currency is either set by the user or derived from other organizational units. The Assignment Control is a very important setting when the subject is controlling area currency type. There are 2 options: 1 = Controlling Area Same As Company Code 2 = Cross-Company-Code Cost Accounting 1 Controlling Area Same As Company Code Relationship (1:1): The financial accounting and cost accounting views of the organization are identical. Currency Type: The system will automatically assign currency type 10 (Company Code). 2 Cross-Company-Code Cost Accounting Relationship (1:n): Cost accounting is carried out in multiple company codes in the same controlling area. The Company Codes must use: The same number of posting periods (you can check it in the fiscal year variant) The same Chart of Account Hint : A 1:n relationship is appropriate, for example, if the organization has independent subsidiaries using a global cost accounting system, since it is possible to perform internal allocations between company codes. Account Master Data T-Code : FS00 | G/L Account Centrally Control Data | Account Control (Company Code) Balances in Local Currency Only Indicates that balances are updated only in local currency when users post items to this account. You set this if you do not want the system yp update transaction figures se parately by currency. Recommended for some Balance Sheet Accounts: Not managed as open items and not kept in foreign currencies. Managed as open items and and have the same types of items posted in different currencies, but always allow clearing to be made if the local currency amounts correspond. Example : You set up a clearing account for GR/IR and post these itema to it. Goods Receipt (Posted always in Local Currency) EUR 890 Invoice Receipt (Posted Invoice Currency) USD 1000 EUR 890 Both items can be cleared if the clearing account balances are recorded in Local Currency Only. Unless you set the indicator for this account, the system will translate the USD to EUR during the clearing procedure to determine the account in EUR required to clear 1000 USD. If the translation rate is 0.89, the system displays 900 EUR for the invoice receipt and 890 EUR for the goods receipt when the open items are processed. This means that to clear both od these items, you will also have to enter a difference posting for 10 EUR, and the system will automatically make an additional exchange rate difference posting for this amount. Posting without tax allowed Indicates that acoount can be posted without tax code. It is possible to post both taxable and non-taxable items to that account. But If you post with tax code the system checks the entry against the Tax Category. Tax Category You only use Tax Category if the account is tax-relevant, If not, leave the field in blank. Example of tax categories: "*" All Tax Types Permitted "+ " Only Output Tax Permitted "- " Only Input Tax Permitted "> " Output Tax Account "< " Input Tax Account Control Data | Account Management (Company Code) Open Item Management Indicator activated: The items posted are marked as open or cleared. Indicator Inactivated: The items posted has no offsetting option, with open and clared marks. Accounts managed as open items: Clearing accounts Blank Clearing Account Payroll Clearing Account Cash Discount Clearing Account GR/IR Clearing Account Accounts that are NOT managed as open items: Bank Accounts Tax Accounts Raw Material Accounts Reconciliation Accounts (There are managed implicitly using the subledger open item function) Profit and Loss Accounts Materials Management (MM) Accounts (Posted with a posting key that has account type 'M') Create/Bank/Interest | Control of Document Creation ( Company Code) Post Automatically Only Indicates that this account can only be posted to by the system using account determination tables. Docum ent Split Document Splitting is a function delivered initially within the New G/L, similar to FI-SL splitting available from release 4.7 onwards. It is an essential tool for drawing up complete financial statements for the selected dimensions (e.g. Segment, Profit Center, Business Area, Fund, Grant or Customer field) at any time. Document splitting splits up line items during the posting for selected dimensions such as receivable lines by "Profit Center". Also, to affect a zero balance setting in the document for selected dimensions such as "Segment", document splitting can be used. The zero balance setting may generate additional clearing lines in the general ledger view. Seq Transaction Name Module Reference SAP Path Comments 001 GSP_CD Maintain constans FI-GL 002 GSP_KD Maintain account determination FI-GL 003 GSP_KD1 Maintain acct deter: 0 balance FI-GL 004 GSP_KD2 Maintain acct deter: Additional rows FI-GL 005 GSP_LD Define item type FI-GL business transaction - do not change 006 GSP_LZ1 SAP internal item cat. Assigment FI-GL assignment do de cima 007 GSP_LZ2 Allocation: acct number - item type FI-GL Clsssify G/L Accounts for Document Splitting 008 GSP_MD Define Splitting Method FI-GL 009 GSP_PD Define business process FI-GL do not change 010 GSP_RD Define Split Rule FI-GL 011 GSP_VD Define business process variant FI-GL 012 GSP_VZ1 Transaction->process var. assignment FI-GL Assigment: Transaction Code - Accounting Transaction Variant 013 GSP_VZ2 MM movem. Type->process var. assgmt FI-GL Assigment: MM Movement Type - Accounting Transaction Variant 014 GSP_VZ3 FI doc type->process var. assignment FI-GL Classify FI Document Type for Document Splitting Views Entry View | Based on table BSEG as used in Classic G/L General Ledger View | Based on the New G/L tables for ECC (ACDOCA for S/4 HANA) You can choose between displaying the document either in its original form in the entry view or with the generated clearing lines from the perspective of a ledger in the general ledger view. Issues Balancing Field is not Filled |Error messages for example "the balancing field is not filled" may arise while you are working with relevant business processes. These issues are usually based on missing or incorrect document split customizing New G/L Migration | Subsequent activation of document split functionality within a productive environment (with existing transactional data) is critical. It has to be handled with a separate migration project Subsequent Changes | Processes in a customer system are dynamic and changes in document split customizing may arise. If subsequent changes are necessary, please refer to the long text of the warnings and also to OSS Note 891144 1. Document Split Functionality With the functionality 'document splitting' a complete financial statement for selected dimensions can be provided at any time. Document splitting splits up line items for selected dimensions such as "Segment", "Profit Center", etc. Document Splitting Method | A splitting method contains the splitting rules governing how the individual item categories are dealt with Splitting Rule | Depending on the business transactions the rule governs how the individual item categories will be processed by the system Business Transaction | SAP delivers 10 business transactions. A business transaction describes the structure of a business process for each document type. For each business transaction, you can determine which item categories (can) appear in the transaction. Business transactions are only used in document splitting Item category | The item category characterizes the items of an accounting document. You need to classify the individual document items so that the system knows how to handle them. Therefore, an item category has to be assigned to all G/L accounts (T-Code: GSP_LZ2) Processing category | The processing category controls how the amounts are split. 0 | Transfer a fixed value (No Splitting) 1 | Splitting by base item categories specified 2 | Splitting based on current account balance Warning When using document splitting SAP recommends to avoid posting mixed business processes A new document type for each business process needs to be defined in order to separate them. Generally it has to be ensured that each business process is posted with an appropriate document type (Example: Within SAP standard delivered customizing for business transaction "0300 Vendor Invoices" it is not possible to post customer or bank account lines) 2. New G/L Scenarios In order to define the relevant fields to be updated within open items and totals, scenarios have to be assigned to the ledgers used. SAP standard delivers 6 scenarios (Also custom fields can be assigned). To split the posted items of a particular ledger by the selected criteria (Segment, Profit Center, Custom Field [ZZxxx], etc.), the relevant New G/L scenario has to be assigned to the ledger. 2.1. Define Document Splitting Method The document splitting method contains the rules governing how the individual item categories are dealt with. In case changes need to be applied to standard customizing, SAP recommends copying the standard method 0000000012 and applying the changes. 2.1.1. Define Document Splitting Method T-Code | SM30 ( V_T8G01) Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions -> Document Splitting -> Extended Document Splitting -> Define Document Splitting Method Step 1 | Create an own defined method (e.g. Z000000012) Step 2 | Select all rules included in the standard method and copy it to the Z000000012 Step 3 | Apply the changes needed Step 4 | Activate the new to be used document splitting method 2.2. Activate Document Splitting T-Code | SM34 (VC_FAGL_SPLIT) Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions >- Document Splitting -> Activate Document Splitting Step 1 | Document Splitting Assignment - Document splitting method has to be assigned (e.g. Z000000012) Step 2 | Activating Inheritance of Account Assignments Inheritance of Account Assignments The indicator "Inheritance of Account Assignments" transfers the account assignments which are defined as split criteria. The values of the split criteria are always taken into consideration together as a combination of the account assignments. The field values are inherited only in case the account assignment combination is unique within the complete document. That means the account assignments are being inherited if the values of the split criteria in the complete document are the same. Please consider that only account assignments relevant for the balance sheet (G/L split criteria) are taken over since it is rather a fallback mechanism for the unassigned processes Hint: There is also a possibility to deactivate inheritance for some specific business transactions. Deactivating Inheritance of Account Assignments T-Code | GSP_RD Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions -> Document Splitting -> Extended Document Splitting -> Define Document Splitting Rules Step 1 | In the "Header Data", double click in the "Method + Business Transaction + Variant" desired Step 2 | Flag the indicator " No Inheritance of A/c Assignments" Hint: This indicator 'No Inheritance of A/c Assignments' can be set/removed in the definition of the business transaction (Only available in ERP2005) Activation Standard A/C Assignment on the Splitting Method Level The constant defines default account assignments for all line items for which it is not possible to derive any account assignments via the splitting rule or the inheritance. To activate this function select indicator "Standard A/C Assgnmt" and assign the constant. Constant Definition T-Code | SM34 (FAGL_CONSTANTS_GLOBAL) Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions >- Document Splitting -> Edit Constant for Nonassigne d Processes Step 1 | Create the Constant (eg. Zxxx) Step 2 | Assign Profit Center Deactivate Constant Default at Business Transaction Level T-Code | GSP_RD Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions -> Document Splitting -> Extended Document Splitting -> Define Document Splitting Rules Step 1 | In the "Header Data", double click in the "Method + Business Transaction + Variant" desired Step 2 | Flag the indicator " No Default of A/c Assignments" There is also a possibility to deactivate the default account assignment (constant) set on method level for some specific business transactions. Deactivate Document Splitting at Company Code Level Document split can be deactivated at company code level. In case one or more company codes in your system should not use document splitting functionality, then choose the "inactive" indicator at company code level. Define Document Splitting T-Code | SM34 (VC_FAGL_SPLIT) Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions >- Document Splitting -> Activate Document Splitting Step 1 | In the Dialog Structure, click in "Deactivation per Company Code" Step 2 | Flag the indicator "Inactive" in the desired Company Code Warning: If you perform any cross company code postings please make sure that all company codes involved use document splitting Hint: In addition the company codes which are used in cross company postings have to be assigned in Transaction "OBY6" to companies in a 1:1 relation 2.3. Document splitting characteristics Document splitting is a tool for drawing up complete financial statements for selected dimensions. Additional zero balance items are automatically created in case the balance of account assignment objects is not zero. Document splitting characteristics can be defined for General Ledger and additional characteristics for controlling and assets. Characteristics for General Ledger Accounting Characteristics for Controlling Characteristics for Cash Discounts Capitalized to Assets 2.3.1. Document splitting Characteristics for General Ledger In this IMG-step the account assignments taken into consideration in document splitting are defined. It can be defined if a zero balance setting for the characteristic and a partner field has to be used. If the zero balance flag has been activated, the system makes sure that the document balances to zero on account assignment level. The account assignment can also be defined as mandatory. The system accepts postings if the account assignment has been filled in the general ledger view. Either it can be filled in the entry view by entering it or it is derived from the document splitting rules. If a field is defined as a splitting characteristic, but the relevant scenario or custom field is not assigned to a ledger, then it will not be updated in certain new g/l tables. The account assignments specified have to be maintained at least in one of the ledgers. Otherwise the mandatory check is not processed. 2.3.2. Define Document Splitting Characteristics for Controlling Document splitting characteristics for controlling are being transferred only into relevant line items. The CO account assignments are just needed for the cost elements. Therefore the accounts of the corresponding line items need to be defined as a cost element. 2.3.3. Characteristics for Cash Discounts Capitalized to Assets (Post-Capitalization of Cash Discount to Assets) he activation of the "Post-Capitalization of Cash Discount to Assets" has the effect that the cash discount of an asset-relevant payment is not posted to the cash discount account, but directly to the asset. 2.3.4. Zero balance indicator and balance zero clearing account The zero balance indicator setting, ensures that the document is balanced according to document split characteristics for the selected dimensions such as "Segment". In case the balance of account assignment objects is not zero after document splitting the system generates additional clearing items. The triggered line items in the document are posted to the zero balance clearing account defined for each account key in customizing. Define Zero-Balance Clearing Account T-Code | GSP_KD1 Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions >- Document Splitting -> Define Zero-Balance Clearing Account Warning: Therefore, a clearing account has to be created for the additional clearing line items. 2.4. Account key assignment (define zero-balance clearing account) As explained above in some business processes additional clearing line items have to be created automatically so a full financial statement per splitting criteria is available. The automatic posting is made to a zero-balance clearing account defined in the account key. One or more zero-balance clearing accounts may be used. To post to different clearing accounts, each clearing account has to be assigned to a separate account key and each account key to the relevant business transaction variants. Define Zero-Balance Clearing Account T-Code | GSP_KD1 Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions >- Document Splitting -> Define Zero-Balance Clearing Account 2.5. Constant definition In order to set default account assignments within the document splitting, one or more constants can be defined. Edit Constants for Non-assigned Processes T-Code | GSP_CD Path | IMG -> Financial Accounting (New) -> General Ledger Accounting (New) -> Business Transactions >- Document Splitting -> Edit Constants for Non-assigned Processes For defining the constant only the defined split criteria can be chosen. A default value can either be assigned to all or just to several split criteria. The default values are always set as a combination, meaning all or nothing. Example: Split criteria A and B is set as default If fields A and B are both not filled during posting, the default values of the constant are set. If field A is set with the default value of the constant and B is not filled, the constant fills the value of field B. If field A is set but not with the default value of the constant, nothing is done by the constant. If any other split criteria is filled which is not defined within the constant, the constant fills fields A and B. If an assigned split criteria is set with default 'blank', the system considers 'blank' as a value. Two different ways of using a constant exist: General constant for all business processes Specific constant assigned to explicit item categories References: SAP (www.sap.com ); SAP Support (support.sap.com ); SAP Help (help.sap.com ); SAP Blog (blogs.sap.com )

When we are working on daily activities, doing customizing, testing and checking, it is very common to work with different screens logged in different environments and clients. Using the same color can be tricky and lead to mistakes. A good alternative is to change the colors to identify between the DEV and QA environment, or even between DEV Gold and DEV unit test. SAP Optimization SAP GUI Layout Color Parameter ID SAP Field Commands Adding transaction codes (T-Codes) in the SAP Menu Removing SAP Initial Picture Show Keys within Dropdown Lists SAP GUI Layout Color When we are working on daily activities, doing customizing, testing and checking, it is very common to work with different screens logged in different environments and clients. Using the same color can be tricky and lead to mistakes. A good alternative is to change the colors to identify between the DEV and QA environment, or even between DEV Gold and DEV unit test. In this example we are going to change the colors of the same environment but of different clients. SAP DEV Client 100 (Gold) SAP DEV Client 200 (Unit Test) Log in Click in "More" SAP GUI Settgins and actions Options SAP DEV Client 100 (Gold) Visual Design Colors Settings Colors in System And choose the desired color In this case, I am setting client 100 with the golden color (yellow). SAP DEV Client 200 (Unit Test) Log in the other client Click in "More" SAP GUI Settgins and actions Options And repeat the steps. Visual Design Colors Settings Colors in System And choose the desired color In this case, I am setting client 200 with green color. Now you can log in and log out and these clients will keep the different colors and you will be able to work on both clients at the same time with no mistakes. Warning : Screens, backgrounds and options may differ due to the chosen SAP GUI version or theme. Parameter ID Go to "Maintain User Profile" T-Code: SU3 In the section "Patameters" Add Parameter ID Parameter Value In this example a Controlling Area is set using the Parameter ID "CAC". BUK - Company code CAC - Controlling Area ERB - Operating Concern FWS - Currency Unit GJR - Fiscal Year KPL - Chart Of account WRK - Plant SAP Field Commands To call a transaction | In the same session Command: /n How: Enter: /nxxxx (xxxx = transaction code) To call a transaction | In the same session, whereby the initial screen is skipped Command: /* How: Enter: /*xxxx (xxxx = transaction code) To call a transaction | In a additional session Command: /o How: Enter: /oxxxx (xxxx = transaction code) To end the current transaction Command: /n How: Enter: /n (Unsaved changes are lost without warning) To delete the current session Command: /i To generate a session list Command: /o To end the current transaction and return to the starting menu Command: /ns000 To log off from the system Command: /nend To log off from the system without a confirmation prompt Command: /nex How: Enter: /nex (Changes that were not saved are lost without warning) Adding transaction codes (T-Codes) in the SAP Menu In the initial screen Go to Extras -> Settings And Select "Display Technical Names" You can see in the screenshot: Before activation, only transaction names are displayed. Then you can see the displayed T-Codes. Knowing the T-Codes, you can access the transaction using the command prompt directly, saving you some time. Instead of navigating through the SAP menu every time. Removing SAP Initial Picture In the initial screen Go to Extras -> Settings And Select "Do Not Display Picture" The default image on most SAP installations is the same. It's the standard "a drop in water" image. There are companies that customize that image, changing it to the company logo. But you have this option to remove it, and leave the home screen a little cleaner. Show Keys within Dropdown Lists Dropdown lists in SAP without these flags only show available descriptions. After activating this option you will be able to see, not only the descriptions, but also the object names. By selecting "Sort by Key", the dropdown will be sorted alphabetically by object names. In the SAP GUI Go to Options Then, go to "Interaction Design" -> "Visualization 1" In the section "Controls" Select: Show Keys Within Dropdown List Sort By Keys Within Dropdown lists for Most Efficient Keyboard Input References: SAP (www.sap.com ); SAP Support (support.sap.com ); SAP Help (help.sap.com ); SAP Blog (blogs.sap.com )

Topics: SAP S/4 HANA Material Ledger Step by Step Customizing SAP Material Ledger SAP Actual Costing / Material Ledger Standard Price versus Moving Average Price Standard Price (S) | Advantages x Disadvantages Moving Average Price (V) | Advantages x Disadvantages SAP Actual Costing / Material Ledger Configuring SAP Material Ledger involves several steps to ensure accurate and detailed material valuation. Below is a step-by-step guide on how to configure SAP Material Ledger. Please note that the exact steps and transaction codes may vary depending on your SAP version and configuration. Always refer to the official SAP documentation for your specific SAP version. F ollowing the best practices implementation is always the best solution to leveraging the full capabilities of SAP Material Ledger. Seq Transaction Name Module Reference SAP Path 001 OX14 Valuation Level MM Define Valuation Level IMG -> Enterprise Structure -> Definition -> Logistics - General -> Define Valuation Level 002 OMX2 Assign Currency Types and Define Material Ledger Types PC-ML Assign Currency Types and Define Material Ledger Types IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Assign Currency Types and Define Material Ledger Types 003 OMX3 Assign Material Ledger Types to Valuation Area PC-ML Assign Material Ledger Types to Valuation Area IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Assign Material Ledger Types to Valuation Area 004 CKM9 Check Material Ledger Settings (Display of ML-Relevant Customizing Settings) PC-ML Activate Material Ledger for Valuation Area IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Activate Material Ledger for Valuation Areas 005 OMX1 Activation of Material Ledger PC-ML Activate Material Ledger for Valuation Area IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Activate Material Ledger for Valuation Areas 006 S_ALR_87008137 Maintain Number Ranges for Material Ledger Documents PC-ML Maintain Number Ranges for Material Ledger Documents IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Maintain Number Ranges for Material Ledger Documents 007 OMX4 Number range: Material ledger document PC-ML Maintain Number Ranges for Material Ledger Documents IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Maintain Number Ranges for Material Ledger Documents 008 OMX5 Configure Dynamic Price Changes PC-ML Configure Dynamic Price Changes IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Configure Dynamic Price Changes 009 V_CKMLKONT No text found for transaction (Assign Acc. Assignment Reason to Acct Modification Const) PC-ML Reasons for Price Changes IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Reasons for Price Changes 010 OMX_UMB_ACCOUNTS Display Accounts For Account Key UMB PC-ML Reasons for Price Changes IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Reasons for Price Changes 011 OPR4_ACT Define User-Defined Message Types PC-ML Define User-Defined Message Types IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Define User-Defined Message Types 012 SM30 (V_CKMLMV010_T) Define Movement Type Groups of Material Ledger PC-ML Define Movement Type Groups of Material Ledger IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Material Update -> Define Movement Type Groups of Material Ledger 013 SM30 (V_156Q_ML) Assign Movement Type Groups of Material Ledger PC-ML Assign Movement Type Groups of Material Ledger IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Material Update -> Assign Movement Type Groups of Material Ledger 014 OMX9 Define Material Update Structure PC-ML Define Material Update Structure IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Material Update -> Define Material Update Structure 015 OMX8 Assign Material Update Structure to a Valuation Area PC-ML Assign Material Update Structure to a Valuation Area IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Material Update -> Assign Material Update Structure to a Valuation Area 016 CKM9 Verify Settings for Actual Costing (Display of ML-Relevant Customizing Settings) PC-ML Activate Actual Costing IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Actual Costing -> Activate Actual Costing 017 SM30 (VV_T001W_MV_1) Activate actual costing PC-ML Activate Actual Costing IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Actual Costing -> Activate Actual Costing 018 OMXW Activate WIP at Actual Costs PC-ML Activate WIP at Actual Costs IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Actual Costing ->Activate WIP at Actual Costs 019 SM30 (V_T001K_CCS) Activate Actual Cost Component Split PC-ML Activate Actual Cost Component Split IMG -> Controlling -> Product Cost Controlling -> Actual Costing /Material Ledger -> Actual Costing -> Activate Actual Cost Component Split SPRO IMG Customizing Tree These are the basic customizing transaction used to setup Material Ledger: Assign Currency Types and Define Material Ledger Types Assign Material Ledger Types to Valuation Area Activate Material Ledger for Valuation Areas Maintain Number Ranges to Material Ledger Documents Configure Dynamic Price Changes Reasons for Price Changes Define User-Defined Massage Types Define Movement Types Groups of Material Ledger Assign Movement Types Groups of Material Ledger Activate Actual Costing Activate Actual Cost Component Split Activate WIP at Actual Costs 1. Assign Currency Types and Define Material Ledger Types Material Ledger Types Automatic getting CT from: Currency Type from FI Currency Type from CO You don't need to enter the currency type manually Manual: You need to enter the desired currency types manually 2. Assign Material Ledger Types to Valuation Area The Material Ledger Type that was created in the step above needs to be assigned Valuation Area. Valuation Area | Organizational level at which the material ledger is valuated. It can be one of the following: Plant All plants belonging to a company code, in which case the valuation area is the company code. 2.1. Valuation Level You define the valuation level by specifying the level at which material stocks are valuated. You can valuate material stocks at the following levels: Plant Level Valuation must be at this level in the following cases If you want to use the application component Production Planning (PP) or Costing If your system is a SAP Retail system Company Code Level Valuation level choice affects the following: Maintenance of material master records G/L accounts in which material stocks are managed G/L accounts to which transactions are posted in Materials Management Important: Once set, it is not possible to switch the valuation level from plant to company code, or vice versa. If absolutely necessary to subsequently change the valuation level, contact a SAP consultant because a data conversion is required. Standard Price versus Moving Average Price Material Valuation How materials are valuated in the SAP system essentially depends on the price control that was set for the material in the material master. You can choose between a valuation at the standard price (S price) or at the moving average price (V price). When using the Material Ledger, you have the possibility of combining the advantages of standard price control and moving average price control. With moving average price control, a new material price is calculated after every goods receipt, invoice receipt, and/or order settlement. This material price is an average value calculated from the total inventory value and the total quantity of the material in stock. With standard price control, goods movements are valuated with a price that remains constant for at least one period. The standard price that is assigned to a material is usually the result of a standard cost estimate. The main difference between the two valuation procedures is that the moving average price represents a current delivered price while the standard price is based on planned values and not actual values. Differences between the planned price and the actual prices are not assigned to the material stock in Financial Accounting, but rather are assigned to a price difference account. When using the moving average price, however, the material stock value in Financial Accounting can reflect the prices actually incurred. However, the moving average price has its disadvantages too. Actual Costing Use the component Actual Costing/Material Ledger to ensure a method of cost management that uses the most current data to calculate your actual material costs. You can use this component to calculate an average price at the end of the period using the actual costs incurred in that period. You can then use this average price to valuate the material stock in the period in question. The standard price is used for preliminary material valuation in the Actual Costing/Material Ledger component. In the following text, problems that could result from valuating materials with the moving average price are illustrated in conjunction with a comparison of advantages and disadvantages of both methods of price control. You can avoid the problems that arise when using the standard price for material valuation by using the component Actual Costing/Material Ledger . In addition, there will be some recommendations from SAP as to which price control to use. Standard Price (S) Advantages When using the standard price, all goods movements of a material are valuated with the same price over at least one period. Therefore, the standard price ensures consistent cost management of the production process and makes variances within production transparent. A periodic price (standard price) is especially useful when working with cost management by period. The standard price can also be used as a benchmark by which you can measure different methods of production, or compare the contribution margins of a material in different market segments in Profitability Analysis. Disadvantages Because the standard price is held constant for an entire period, it does not reflect the actual costs incurred during the period. This can lead to inexact valuation prices for materials whose procurement prices change a great deal over a period, or whose method of production changes within a period. This problem increases in multilevel production with each new production step. This means that the costs for the finished product may not reflect the most recent data. The material stock value does not reflect the current procurement costs, as variances from the standard price are collected in a price difference account in Financial Accounting and do not lead to a correction of the material stock account. The variances collected in the price difference account can no longer be assigned to the individual material. If you use split valuation for materials, please note that you can only release the material price at the header level of a material (not at the level of the valuation type) when calculating a material price in Product Cost Planning. Moving Average Price (V) Advantages The advantage of using the moving average price is that variances are updated in the material price and the material stock value. Because the material price reflects the average procurement cost of a material, material issues could, in principle, be valuated with the current price. Only in special cases are variances allocated to a price difference account in Financial Accounting rather than to the material stock. The advantages of the moving average price are seen only if: you are looking at the material valuation data at the lowest production level; all variances occur immediately; the material price is not distorted by the sequence of postings by the system. Disadvantages The main disadvantage of using the moving average price is that the price used to valuate a material consumption is almost completely dependent on the time at which the goods issue is posted in the system. If, for example, an invoice receipt is posted in the system after a goods issue was entered, that invoice value is not reflected in the value of the material issued. The material is therefore not valuated with its actual procurement cost. The moving average price also does little to guarantee consistent cost management of your production process. The effect of changes in the production process, for example, are not recognizable in the finished product, and comparing results from different areas in Profitability Analysis is not really meaningful due to lack of a benchmark. The fact that the moving average price is not dependent on the period can also lead to incorrect material valuation, as goods movements that are posted to a previous period are not valuated with the price from that period, but rather with the current moving average price. Another problem with the moving average price is that any mistake entering data can cause immediate and unwanted changes in the material price. Any goods issues posted following this error will be valuated immediately with this incorrect material price. In particular, the moving average price can lead to unrealistic material prices in cases of multi-level production or when there are variances that do not appear immediately. Such unrealistic prices occur, for example, when, in the context of stock coverage, a subsequent adjustment to the material stock occurs using an incorrect base quantity. Material Ledger When using the application component Material Ledger, you only use the standard price as a preliminary valuation price in the current period. At the end of the period, you can use this component to calculate an average price for the material using the actual costs incurred in that period. You can then use this average price to valuate the material stock in the period in question. Hint : If you use Material Ledger, you should also use standard price control of raw materials and trading goods to ensure consistent cost management of your production process. Only in this way are variances completely transparent within production. In Summary The problems described above show that the moving average price, despite its advantages can lead to problems. In particular, the moving average price can cause unrealistic valuations of material inventory when materials are produced in-house or when variances do not appear immediately. On the other hand, the standard price does not take any actual procurement costs into account, which can be a problem, for example, with externally procured materials with highly variable prices. Recommendation Moving Average Price: It should be used only in Trading Goods, but not in Raw Materials. Standard Price: It must be used for Semi-Finished, Finished Goods and Raw Materials. Price S Price V References: SAP (www.sap.com ); SAP Support (support.sap.com ); SAP Help (help.sap.com ); SAP Blog (blogs.sap.com )

Topics: SAP Tables | Relationships | Key Fields | S/4 HANA ACDOCA and Elements | Table Joins SAP S/4 HANA Tables SAP Tables SAP S/4 HANA ACDOCA and Elements SAP Tables Relationship | Material Master Record Table Category Internal Table SAP Tables Environment | Structural | Organizational Table Description Type Area T-Code Key Field1 Key Field 2 Key Field 3 Key Field 4 Add Field Explanation SKA1 G/L Account Master (Chart of Accounts) Master Data Accounting FS00 SAKNR KTOPL SKAT G/L Account Master Record (Chart of Accounts: Description) Master Data Accounting FS00 SAKNR KTOPL SPRAS SKB1 G/L account master (company code) Master Data Accounting FS00 SAKNR BUKRS ACDOCA Universal Journal Entry Line Items Transactional Accounting FB01 BELNR RBUKRS GJAHR RLDNR S/4 HANA Universal Journal (Single Source of Truth). All Financial and Management Accounting Postings ACDOCP Plan Data Line Items Transactional Accounting REQTSN DATAPAKID RECORD RACCT S/4 HANA Universal Journal for Plan Data Line Items BKPF Accounting Document Header Transactional Accounting FB01 BELNR BUKRS GJAHR BSEG Accounting Document Segment Transactional Accounting FB01 BELNR BUKRS GJAHR REGUS Accounts blocked by Payment proposal Transactional Accounts Payable F110 BUKRS KOART LAUFI LAUFD Find payment proposals that are blocking payment runs CSKS Cost Center Master Record Master Data Cost Center KS01 KOSTL KOKRS DATBI CSKT Cost Center Texts Master Data Cost Center KS01 KOSTL KOKRS DATBI SPRAS COBK CO Object: Document Header Transactional Cost Center COEP CO Object: Line Items (by Period) Transactional Cost Center COSP CO Object: Cost Totals for External Postings ("COSP") Transactional Cost Center CSKA Cost Elements (Data Dependent on Chart of Accounts) Master Data Cost Element FS00 / KA01 KSTAR KTOPL CSKB Cost Elements (Data Dependent on Controlling Area) Master Data Cost Element FS00 / KA01 KSTAR KOKRS DATBI CSKU Cost Element Texts Master Data Cost Element FS00 / KA01 KSTAR KTOPL SPRAS KNA1 General Data in Customer Master Master Data Customer BP / XD01 KUNNR KNB1 Customer Master (Company Code) Master Data Customer BP / XD01 KUNNR BUKRS KNB4 Customer Payment History Master Data Customer BP / XD01 KUNNR BUKRS KNB5 Customer master (dunning data) Master Data Customer BP / XD01 KUNNR BUKRS MABER KNBW Customer master record (withholding tax types) X Master Data Customer BP / XD01 KUNNR BUKRS WITHT KNVD Customer master record sales request form Master Data Customer KUNNR VKORG VTWEG SPART KNVP Customer Master Partner Functions Master Data Customer KUNNR VKORG VTWEG SPART KNVV Customer Master Sales Data Master Data Customer KUNNR VKORG VTWEG SPART MAKT Material Descriptions Master Data Material MM01 MATNR SPRAS MARA General Material Data Master Data Material MM01 MATNR MARC Plant Data for Material Master Data Material MATNR WERKS MARM Units of Measure for Material Master Data Material MATNR MEINH MBEW Material Valuation Master Data Material MATNR BWKEY BWTAR MLAN Tax Classification for Material Master Data Material MATNR ALAND MVKE Sales Data for Material Master Data Material MATNR VKORG VTWEG PRODH T179 Materials: Product Hierarchies Master Data Material PRODH T001 Company Codes Customizing Organizational OBY6 BUKRS T001W Plants/Branches Customizing Organizational WERKS T002 Language Keys Customizing Organizational SPRAS T003 Document Types Customizing Organizational BLART T004 Directory of Charts of Accounts Customizing Organizational KTOPL T005 Countries Customizing Organizational LAND1 T006 Units of Measurement Customizing Organizational MSEHI T008 Blocking Reasons for Automatic Payment Transcations Customizing Organizational ZAHLS T009 Fiscal Year Variants Customizing Organizational PERIV T011 Financial Statement Versions Customizing Organizational VERSN T012 House Banks Customizing Organizational HBKID BUKRS T014 Credit control areas Customizing Organizational KKBER T016 Industries (Branch) Customizing Organizational BRSCH T030 Standard Accounts Table Customizing Organizational OBYC KTOPL KTOSL BKLAS KOMOK KONTS Check the transaction OBYC (Automatic Accounting Posts - Procedures | Account Determination) T030H Acct Determ.for Open Item Exch.Rate Differences Customizing Organizational OBA1 HKONT KTOPL WAERS CURTP Use to check the Account Determination for Open Item Exchange Rate Differences Account | This is used in FAGL_FCV (Foreign Currency Valuation) PROJ Project definition Master Data PS PSPNR PRPS WBS (Work Breakdown Structure) Element Master Data Master Data PS PSPNR CEPC Profit Center Master Data Table Master Data Profit Center KE51 PRCTR KOKRS DATBI CEPCT Texts for Profit Center Master Data Master Data Profit Center KE51 PRCTR KOKRS DATBI SPRAS T000 Clients Customizing System SCC1 MANDT DD03L Table Fields System System SE16H FIELDNAME You can check which tables a specific field is in PRGN_CORR2 Correction Table for Modif. Transaction Codes in Area Menu System System T_TCODE S_TCODE REL_NAME You can check the old transaction that was replaced by new ones TSTC SAP Transactional Codes System System SE93 TCODE LFA1 Supplier Master (General Section) Master Data Vendor BP / XK01 LIFNR LFB1 Vendor Master (Company Code) Master Data Vendor BP / XK01 LIFNR BUKRS LFB5 Vendor master (dunning data) Master Data Vendor BP / XK01 LIFNR BUKRS MABER LFBK Vendor Master (Bank Details) Master Data Vendor BP / XK01 LIFNR BANKS BANKL BANKN LFBW Vendor master record (withholding tax types) X Master Data Vendor BP / XK01 LIFNR BUKRS WITHT LFM1 Vendor master record purchasing organization data Master Data Vendor BP / XK01 LIFNR EKORG LFM2 Vendor Master Record: Purchasing Data Master Data Vendor BP / XK01 LIFNR EKORG LTSNR WERKS SAP S/4 HANA ACDOCA and Elements Field Data Element Short Description Check Table Domain Data Type Length Decimal Places Search Help Origin of Input Help RCLNT MANDT Client T000 MANDT CLNT 3 0 H_T000 Input help implemented with check table RLDNR FINS_LEDGER Ledger in General Ledger Accounting FINSC_LEDGER FINS_LEDGER CHAR 2 0 Input help implemented with check table RBUKRS BUKRS Company Code T001 BUKRS CHAR 4 0 C_T001 Input help implemented with check table GJAHR GJAHR Fiscal Year GJAHR NUMC 4 0 BELNR BELNR_D Accounting Document Number BELNR CHAR 10 0 DOCLN DOCLN6 Six-Character Posting Item for Ledger DOCLN6 CHAR 6 0 RYEAR GJAHR_POS General Ledger Fiscal Year GJAHR NUMC 4 0 DOCNR_LD FINS_DOCNR_LD Ledger specific Accounting Document Number BELNR CHAR 10 0 RRCTY RRCTY Record Type RRCTY CHAR 1 0 Input help with fixed values .INCLUDE ACDOC_SI_00 Universal Journal Entry: Transaction, Currencies, Units STRU 0 0 RMVCT RMVCT Transaction type T856 RMVCT CHAR 3 0 H_T856 Input help implemented with check table VORGN VORGN Transaction Type for General Ledger VORGN CHAR 4 0 VRGNG CO_VORGANG CO Business Transaction TJ01 J_VORGANG CHAR 4 0 H_TJ01 Input help implemented with check table BTTYPE FINS_BTTYPE Business Transaction Type FINSC_BTTYPE FINS_BTTYPE CHAR 4 0 Input help implemented with check table AWTYP AWTYP Reference procedure TTYP AWTYP CHAR 5 0 Input help implemented with check table AWSYS AWSYS Logical system of source document TBDLS LOGSYS CHAR 10 0 Input help implemented with check table AWORG AWORG Reference Organizational Units AWORG CHAR 10 0 AWREF AWREF Reference document number AWREF CHAR 10 0 AWITEM FINS_AWITEM Reference Document Line Item NUMC6 NUMC 6 0 AWITGRP FINS_AWITGRP Group of Reference Document Line Items NUMC6 NUMC 6 0 SUBTA FINS_SUBTA Partial Document to be balanced to zero NUMC6 NUMC 6 0 XREVERSING FINS_XREVERSING Indicator: Item is reversing another item XFELD CHAR 1 0 Input help with fixed values XREVERSED FINS_XREVERSED Indicator: Item is reversed XFELD CHAR 1 0 Input help with fixed values XTRUEREV FINS_XTRUEREV Indicator: True reversal (i.e. cancellation) XFELD CHAR 1 0 Input help with fixed values AWTYP_REV AWTYP_REV Reversal: Reference Transaction of Document to Be Reversed TTYP AWTYP CHAR 5 0 Input help implemented with check table AWORG_REV AWORG_REV Reversal: Reference Organizations of Document to Be Reversed AWORG CHAR 10 0 AWREF_REV AWREF_REV Reversal: Reference Document No. of Document to Be Reversed AWREF CHAR 10 0 SUBTA_REV FINS_SUBTA_REV Reversal: Partial Document to be balanced to zero NUMC6 NUMC 6 0 XSETTLING FINS_XSETTLING Indicator: Item is settling or transferring another item XFELD CHAR 1 0 Input help with fixed values XSETTLED FINS_XSETTLED Indicator: Line item is settled or transferred XFELD CHAR 1 0 Input help with fixed values PREC_AWTYP FINS_PREC_AWTYP Preceding Document Reference Transaction TTYP AWTYP CHAR 5 0 Input help implemented with check table PREC_AWSYS FINS_PREC_AWSYS Logical System of Preceding Reference Document TBDLS LOGSYS CHAR 10 0 Input help implemented with check table PREC_AWORG FINS_PREC_AWORG Preceding Document Reference Organizational Units AWORG CHAR 10 0 PREC_AWREF FINS_PREC_AWREF Preceding Document Reference Document Number AWREF CHAR 10 0 PREC_AWITEM FINS_PREC_AWITEM Preceding Reference Document Line Item NUMC6 NUMC 6 0 PREC_SUBTA FINS_PREC_SUBTA Preceding Partial Document to be balanced to zero NUMC6 NUMC 6 0 PREC_AWMULT FINS_PREC_AWMULT_UUID ID of multiple Preceding Document References SYSUUID RAW 16 0 XSECONDARY FINS_SECONDARY_ENTRY Secondary journal entry BOOLE CHAR 1 0 Input help with fixed values SRC_AWTYP FINS_SRC_AWTYP Source Document Reference Transaction TTYP AWTYP CHAR 5 0 Input help implemented with check table SRC_AWSYS FINS_SRC_AWSYS Logical System of Source Reference Document TBDLS LOGSYS CHAR 10 0 Input help implemented with check table SRC_AWORG FINS_SRC_AWORG Source Document Reference Organizational Units AWORG CHAR 10 0 SRC_AWREF FINS_SRC_AWREF Source Document Reference Document Number AWREF CHAR 10 0 SRC_AWITEM FINS_SRC_AWITEM Source Reference Document Line Item NUMC6 NUMC 6 0 SRC_AWSUBIT FINS_SRC_AWSUBIT Source Reference Document Sub-Item NUMC6 NUMC 6 0 XCOMMITMENT FINS_XCOMMITMENT Indicator: Commitment XFELD CHAR 1 0 Input help with fixed values OBS_REASON FINS_OBSOLETE_ITEM_REASON Reason why this item is obsolete FINS_OBSOLETE_ITEM_REASON CHAR 1 0 Input help with fixed values .INCLUDE ACDOC_SI_CURRKEYS Universal Journal Entry: Currency Keys STRU 0 0 RTCUR FINS_CURRT Balance Transaction Currency TCURC WAERS CUKY 5 0 Input help implemented with check table RWCUR FINS_CURRW Transaction Currency TCURC WAERS CUKY 5 0 Input help implemented with check table RHCUR FINS_CURRH Company Code Currency TCURC WAERS CUKY 5 0 Input help implemented with check table RKCUR FINS_CURRK Global Currency TCURC WAERS CUKY 5 0 Input help implemented with check table ROCUR FINS_CURR1 Freely Defined Currency 1 TCURC WAERS CUKY 5 0 Input help implemented with check table RVCUR FINS_CURR2 Freely Defined Currency 2 TCURC WAERS CUKY 5 0 Input help implemented with check table RBCUR FINS_CURR3 Freely Defined Currency 3 TCURC WAERS CUKY 5 0 Input help implemented with check table RCCUR FINS_CURR4 Freely Defined Currency 4 TCURC WAERS CUKY 5 0 Input help implemented with check table RDCUR FINS_CURR5 Freely Defined Currency 5 TCURC WAERS CUKY 5 0 Input help implemented with check table RECUR FINS_CURR6 Freely Defined Currency 6 TCURC WAERS CUKY 5 0 Input help implemented with check table RFCUR FINS_CURR7 Freely Defined Currency 7 TCURC WAERS CUKY 5 0 Input help implemented with check table RGCUR FINS_CURR8 Freely Defined Currency 8 TCURC WAERS CUKY 5 0 Input help implemented with check table RCO_OCUR FINS_CO_OCUR CO Object Currency TCURC WAERS CUKY 5 0 Input help implemented with check table .INCLUDE ACDOC_SI_UNIT_OF_MEASURES Universal Journal Entry: Unit of Measures STRU 0 0 RUNIT MEINS Base Unit of Measure T006 MEINS UNIT 3 0 H_T006 Input help implemented with check table RVUNIT RVUNIT Unit of Measure for Valuation Quantity T006 MEINS UNIT 3 0 H_T006 Input help implemented with check table RRUNIT RRUNIT Unit of Measure for Reference Quantity T006 MEINS UNIT 3 0 H_T006 Input help implemented with check table RIUNIT FINS_RIUNIT Unit of Measure for Inventory Quantity T006 MEINS UNIT 3 0 H_T006 Input help implemented with check table QUNIT1 FCO_QUNIT1 Additional Unit of Measure 1 T006 MEINS UNIT 3 0 H_T006 Input help implemented with check table QUNIT2 FCO_QUNIT2 Additional Unit of Measure 2 T006 MEINS UNIT 3 0 H_T006 Input help implemented with check table QUNIT3 FCO_QUNIT3 Additional Unit of Measure 3 T006 MEINS UNIT 3 0 H_T006 Input help implemented with check table CO_MEINH FCO_MEINH Unit of Measure for CO Valuation Quantity MEINS UNIT 3 0 RACCT RACCT Account Number SKB1 SAKNR CHAR 10 0 SAKO Input help implemented with check table .INCLUDE ACDOC_SI_GL_ACCAS Universal Journal Entry: G/L additional account assignments STRU 0 0 RCNTR KOSTL Cost Center CSKS KOSTL CHAR 10 0 Input help implemented with check table PRCTR PRCTR Profit Center CEPC PRCTR CHAR 10 0 Input help implemented with check table RFAREA FKBER Functional Area TFKB FKBER CHAR 16 0 Input help implemented with check table RBUSA GSBER Business Area TGSB GSBER CHAR 4 0 H_TGSB Input help implemented with check table KOKRS KOKRS Controlling Area TKA01 CACCD CHAR 4 0 CSH_TKA01 Input help implemented with check table SEGMENT FB_SEGMENT Segment for Segmental Reporting FAGL_SEGM FB_SEGMENT CHAR 10 0 Input help implemented with check table SCNTR SKOST Sender cost center CSKS KOSTL CHAR 10 0 Input help implemented with check table PPRCTR PPRCTR Partner Profit Center CEPC PRCTR CHAR 10 0 Input help implemented with check table SFAREA SFKBER Partner Functional Area TFKB FKBER CHAR 16 0 Input help implemented with check table SBUSA PARGB Trading partner's business area TGSB GSBER CHAR 4 0 H_TGSB Input help implemented with check table RASSC RASSC Company ID of Trading Partner T880 RCOMP CHAR 6 0 CSHDP_T880 Input help implemented with check table PSEGMENT FB_PSEGMENT Partner Segment for Segmental Reporting FAGL_SEGM FB_SEGMENT CHAR 10 0 Input help implemented with check table .INCLUDE ACDOC_SI_VALUE_DATA Universal Journal Entry: Value Fields STRU 0 0 .INCLUDE ACDOC_SI_VALUE_DATA_FLOW Universal Journal Entry: Non-cumulative Value Fields STRU 0 0 TSL FINS_VTCUR12 Amount in Balance Transaction Currency WERTV12 CURR 23 2 WSL FINS_VWCUR12 Amount in Transaction Currency WERTV12 CURR 23 2 WSL2 FINS_VWCUR12_2 Group Valuation Amount in Transaction Currency WERTV12 CURR 23 2 WSL3 FINS_VWCUR12_3 Profit-Center Valuation Amount in Transaction Currency WERTV12 CURR 23 2 HSL FINS_VHCUR12 Amount in Company Code Currency WERTV12 CURR 23 2 KSL FINS_VKCUR12 Amount in Global Currency WERTV12 CURR 23 2 OSL FINS_VOCUR12 Amount in Freely Defined Currency 1 WERTV12 CURR 23 2 VSL FINS_VVCUR12 Amount in Freely Defined Currency 2 WERTV12 CURR 23 2 BSL FINS_VBCUR12 Amount in Freely Defined Currency 3 WERTV12 CURR 23 2 CSL FINS_VCCUR12 Amount in Freely Defined Currency 4 WERTV12 CURR 23 2 DSL FINS_VDCUR12 Amount in Freely Defined Currency 5 WERTV12 CURR 23 2 ESL FINS_VECUR12 Amount in Freely Defined Currency 6 WERTV12 CURR 23 2 FSL FINS_VFCUR12 Amount in Freely Defined Currency 7 WERTV12 CURR 23 2 GSL FINS_VGCUR12 Amount in Freely Defined Currency 8 WERTV12 CURR 23 2 KFSL FINS_VGCUR12_FIX Fixed Amount in Global Currency WERTV12 CURR 23 2 KFSL2 FINS_VGCUR12_FIX2 Group Valuation Fixed Amount in Global Currency WERTV12 CURR 23 2 KFSL3 FINS_VGCUR12_FIX3 PrCtr Valuation Fixed Amount in Global Currency WERTV12 CURR 23 2 PSL FINS_VPCUR12 Total Price Variance in Global Currency WERTV12 CURR 23 2 PSL2 FINS_VPCUR12_2 Group Valuation Total Price Variance in Global Currency WERTV12 CURR 23 2 PSL3 FINS_VPCUR12_3 PrCtr Valuation Total Price Variance in Global Currency WERTV12 CURR 23 2 PFSL FINS_VPFCUR12 Fixed Price Variance in Global Currency WERTV12 CURR 23 2 PFSL2 FINS_VPFCUR12_2 Group Valuation Fixed Price Variance in Global Currency WERTV12 CURR 23 2 PFSL3 FINS_VPFCUR12_3 PrCtr Valuation Fixed Price Variance in Global Currency WERTV12 CURR 23 2 CO_OSL FINS_VCO_OCUR12 Amount in CO Object Currency WERTV12 CURR 23 2 HSLALT MLHSLALT Alternative Value in Local Currency WERTV12 CURR 23 2 KSLALT MLKSLALT Alternative Value in Group Currency WERTV12 CURR 23 2 OSLALT MLOSLALT Alternative Value in Freely Defined Currency 1 WERTV12 CURR 23 2 VSLALT ML4SLALT Alternative Value in Freely Defined Currency 2 WERTV12 CURR 23 2 BSLALT MLBSLALT Alternative Value in Freely Defined Currency 3 WERTV12 CURR 23 2 CSLALT MLCSLALT Alternative Value in Freely Defined Currency 4 WERTV12 CURR 23 2 DSLALT MLDSLALT Alternative Value in Freely Defined Currency 5 WERTV12 CURR 23 2 ESLALT MLESLALT Alternative Value in Freely Defined Currency 6 WERTV12 CURR 23 2 FSLALT MLFSLALT Alternative Value in Freely Defined Currency 7 WERTV12 CURR 23 2 GSLALT MLGSLALT Alternative Value in Freely Defined Currency 8 WERTV12 CURR 23 2 HSLEXT MLHSLEXT External Value in Local Currency WERTV12 CURR 23 2 KSLEXT MLKSLEXT External Value in Group Currency WERTV12 CURR 23 2 OSLEXT MLOSLEXT External Value in Freely Defined Currency 1 WERTV12 CURR 23 2 VSLEXT ML4SLEXT External Value in Freely Defined Currency 2 WERTV12 CURR 23 2 BSLEXT MLBSLEXT External Value in Freely Defined Currency 3 WERTV12 CURR 23 2 CSLEXT MLCSLEXT External Value in Freely Defined Currency 4 WERTV12 CURR 23 2 DSLEXT MLDSLEXT External Value in Freely Defined Currency 5 WERTV12 CURR 23 2 ESLEXT MLESLEXT External Value in Freely Defined Currency 6 WERTV12 CURR 23 2 FSLEXT MLFSLEXT External Value in Freely Defined Currency 7 WERTV12 CURR 23 2 GSLEXT MLGSLEXT External Value in Freely Defined Currency 8 WERTV12 CURR 23 2 HVKWRT MLHVKWRT Value at Sales Price in Local Currency WERTV12 CURR 23 2 MSL QUAN1_12 Quantity MENGV12 QUAN 23 3 MFSL QUAN1_12_FIX Fixed quantity MENGV12 QUAN 23 3 VMSL VQUAN1_12 Valuation quantity MENGV12 QUAN 23 3 VMFSL VQUAN1_12_FIX Fixed valuation quantity MENGV12 QUAN 23 3 RMSL RQUAN1_12 Reference quantity MENGV12 QUAN 23 3 QUANT1 FCO_QUAN1_L Additional Quantity 1 MENGV12 QUAN 23 3 QUANT2 FCO_QUAN2_L Additional Quantity 2 MENGV12 QUAN 23 3 QUANT3 FCO_QUAN3_L Additional Quantity 3 MENGV12 QUAN 23 3 CO_MEGBTR FCO_MEGBTR CO Valuation Quantity MENGV12 QUAN 23 3 CO_MEFBTR FCO_MEFBTR CO Valuation Quantity Fix MENGV12 QUAN 23 3 .INCLUDE ACDOC_SI_VALUE_DATA_BALANCE Universal Journal Entry: Cumulative Value Fields STRU 0 0 HSALK3 MLHSALK3 Inventory Value in Local Currency WERTV12 CURR 23 2 KSALK3 MLKSALK3 Inventory Value in Group Currency WERTV12 CURR 23 2 OSALK3 MLOSALK3 Inventory Value in Freely Defined Currency 1 WERTV12 CURR 23 2 VSALK3 ML4SALK3 Inventory Value in Freely Defined Currency 2 WERTV12 CURR 23 2 HSALKV MLHSALKV Alternative Inventory Value in Local Currency WERTV12 CURR 23 2 KSALKV MLKSALKV Alternative Inventory Value in Group Currency WERTV12 CURR 23 2 OSALKV MLOSALKV Alternative Inventory Value in Freely Defined Currency 1 WERTV12 CURR 23 2 VSALKV ML4SALKV Alternative Inventory Value in Freely Defined Currency 2 WERTV12 CURR 23 2 HPVPRS MLHPVPRS Moving Average Price in Local Currency WERTV12 CURR 23 2 KPVPRS MLKPVPRS Moving Average Price in Group Currency WERTV12 CURR 23 2 OPVPRS MLOPVPRS Moving Average Price in Another Currency WERTV12 CURR 23 2 VPVPRS ML4PVPRS Moving Average Price in Fourth Currency WERTV12 CURR 23 2 HSTPRS MLHSTPRS Standard Price in Local Currency WERTV12 CURR 23 2 KSTPRS MLKSTPRS Standard Price in Group Currency WERTV12 CURR 23 2 OSTPRS MLOSTPRS Standard Price in Another Currency WERTV12 CURR 23 2 VSTPRS ML4STPRS Standard Price in Fourth Currency WERTV12 CURR 23 2 HVKSAL MLHVKSAL Inventory Value at Sales Price in Local Currency WERTV12 CURR 23 2 LBKUM MLLBKUM Inventory Quantity MENGV12 QUAN 23 3 .INCLUDE ACDOC_SI_FIX Universal Journal Entry: Mandatory fields for G/L STRU 0 0 DRCRK SHKZG Debit/Credit Indicator SHKZG CHAR 1 0 Input help with fixed values POPER POPER Posting Period POPER NUMC 3 0 PERIV PERIV Fiscal Year Variant T009 PERIV CHAR 2 0 Input help implemented with check table FISCYEARPER JAHRPER Period/Year JAHRPER NUMC 7 0 BUDAT BUDAT Posting Date in the Document DATUM DATS 8 0 Input help based on data type BLDAT BLDAT Document Date in Document DATUM DATS 8 0 Input help based on data type BLART BLART Document Type T003 BLART CHAR 2 0 CSH_T003 Input help implemented with check table BUZEI BUZEI Number of Line Item Within Accounting Document BUZEI NUMC 3 0 ZUONR DZUONR Assignment number ZUONR CHAR 18 0 BSCHL BSCHL Posting Key TBSL BSCHL CHAR 2 0 H_TBSL Input help implemented with check table BSTAT BSTAT_D Document Status BSTAT CHAR 1 0 Input help with fixed values LINETYPE LINETYPE Item Category T8G02 LINETYPE CHAR 5 0 Input help implemented with check table KTOSL KTOSL Transaction Key CHAR3 CHAR 3 0 SLALITTYPE SLALITTYPE Subledger-Specific Line Item Type FINSTS_SLALITTY SLALITTYPE NUMC 5 0 Input help implemented with check table XSPLITMOD XSPLITMOD Item Changed by Document Splitting XFELD CHAR 1 0 Input help with fixed values USNAM USNAM User Name XUBNAME CHAR 12 0 TIMESTAMP TIMESTAMP UTC Time Stamp in Short Form (YYYYMMDDhhmmss) TZNTSTMPS DEC 15 0 EPRCTR EPRCTR Partner profit center for elimination of internal business CEPC PRCTR CHAR 10 0 Input help implemented with check table RHOART HOART Type of origin object (EC-PCA) HOART NUMC 2 0 Input help with fixed values GLACCOUNT_TYPE GLACCOUNT_TYPE Type of a General Ledger Account GLACCOUNT_TYPE CHAR 1 0 Input help with fixed values KTOPL KTOPL Chart of Accounts T004 KTOPL CHAR 4 0 H_T004 Input help implemented with check table LOKKT ALTKT_SKB1 Alternative Account Number in Company Code SKA1 SAKNR CHAR 10 0 SAKO Input help implemented with check table KTOP2 KTOP2 Chart of Accounts According to Country Legislation T004 KTOPL CHAR 4 0 H_T004 Input help implemented with check table .INCLUDE ACDOC_SI_GEN Universal Journal Entry: Fields for several subledgers STRU 0 0 REBZG REBZG Document No. of the Invoice to Which the Transaction Belongs BELNR CHAR 10 0 REBZJ REBZJ Fiscal Year of the Relevant Invoice (for Credit Memo) GJAHR NUMC 4 0 REBZZ REBZZ Line Item in the Relevant Invoice BUZEI NUMC 3 0 REBZT REBZT Follow-On Document Type REBZT CHAR 1 0 RBEST CO_RBEST Category of Reference Purchase Order BELEGTYP NUMC 3 0 Input help with fixed values EBELN EBELN Purchasing Document Number EKKO EBELN CHAR 10 0 Input help implemented with check table EBELP EBELP Item Number of Purchasing Document EKPO EBELP NUMC 5 0 Input help implemented with check table ZEKKN DZEKKN Sequential Number of Account Assignment NUM02 NUMC 2 0 SGTXT SGTXT Item Text TEXT50 CHAR 50 0 KDAUF KDAUF Sales Order Number VBELN CHAR 10 0 COBL_EX_VMVA Explicit search help interface to field KDPOS KDPOS Item number in Sales Order NUM06 NUMC 6 0 COBL_EX_VMPC2 Explicit search help interface to field MATNR MATNR Material Number MARA MATNR CHAR 40 0 MAT1 Input help implemented with check table WERKS WERKS_D Plant T001W WERKS CHAR 4 0 H_T001W Input help implemented with check table LIFNR LIFNR Account Number of Supplier LFA1 LIFNR CHAR 10 0 KRED Input help implemented with check table KUNNR KUNNR Customer Number KNA1 KUNNR CHAR 10 0 DEBI Input help implemented with check table FBUDA FBUDA Date on which services are rendered DATUM DATS 8 0 Input help based on data type Reference Transaction Object Type Name Structure Remote Function /OPT/ Accounting document ABR FS-RI Sett. Document ACE Accrual Engine ACEPS_AWKY ACEPS_DOCUMENT_SENDER ACES4 Accrual Engine BKPF_AWOBJ FI_DOCUMENT_SENDER AFRU Reporting document COBK_AWOBJ AC_DOCUMENT_AFRU_DISPLAY AIBU Assts und.const.set. BKPF_AWOBJ AMFI_SHOW_AM_DOCUMENT AMBU Asset Transaction BKPF_AWOBJ AMFI_SHOW_AM_DOCUMENT AMDP Depreciation posting BKPF_AWOBJ AC_DOCUMENT_RECORD ANLA Asset Transaction AS91 FIAA old assets data AUAK Settlement document K_SETTLEMENT_DOC_DISPLAY AXBTA Bus. Travel Account BCAEB Acc.Mgt Single Doc. BCASU Acc.Mgt Totals Doc. BEBD RE Billing Document AC_DOCUMENT_SENDER_BEBD BERD Settlement document AC_DOCUMENT_SENDER_CRM_REBATES BERE Transaction Data AC_DOCUMENT_SENDER_CRM_REBATES BKKEB BCA individual doc. BKK_DOCUMENT_SENDER_SU BKKPR Pmnt order from BCA BKK_AWOBPR BKKSU BCA totals document BKK_DOCUMENT_SENDER_SU BKPF Accounting document BKPF_AWOBJ FI_DOCUMENT_SENDER BKPFE Acctg doc.ECS BKPF_AWOBJ GLE_ECS_ITEM_SENDER BKPFF Actg doc.direct inpt BKPF_AWOBJ FI_DOCUMENT_SENDER BKPFI Acctg doc.f.initial. BKPF_AWOBJ ISH_ERP_FI_SD_VBRK_DISPLAY BKPFM Substitute Document BKPF_AWOBJ X FDM_COLL_DOCUMENT_SENDER BKPFO Actg Doc.Direct Inpt BKPF_AWOBJ FI_DOCUMENT_SENDER BKPFR Reorg. Transfer BKPF_AWOBJ FAGL_R_DOCUMENT_SENDER BKPWF BKPF_AWOBJ FAGL_R_DOCUMENT_SENDER CACS Commission Settlemt ACCHD_AWOR CACS_TRANSFER_DISPLAY_DOC CAJO Cash journal doc. FCJ_DISPLAY_DOCUMENT_IN_CAJO CATS Document from CATS COBK_AWOBJ AC_CATS_DISPLAY_DOCUMENT CF3P CIAP CMPEV MEV_AC_DOCUMENT_SENDER COBK Controlling Document COBK_AWOBJ K_DOCUMENT_SENDER COFIS Reconcil. ledger K_RCL_DOCUMENT_SENDER COPA Profitab. Analysis COPCA Profit center doc. CRMCS Claim Subm. Posting X CRMFM Funds Posting X AC_DOCUMENT_SENDER_CRMFM CRP CRP Document DBMCD DBM Cash Desk /DBM/CD_DOCUMENT_SENDER DBMDP DBM Down Payment /DBM/DP_DOCUMENT_SENDER DBMIB DBM Int. Billing Doc /DBM/IB_DOCUMENT_SENDER DBMSO DBM Workshop Order /DBM/CO_UI_ORDER_SENDER DBMTR DBM Time Recording /DBM/TR_DOCUMENT_SENDER DBMVM DBM Vehicle Mgmt. /DBM/VM_DOCUMENT_SENDER DELI DIDPC Down Payment Chains /SAPPCE/KY /SAPPCE/DPC_AC_DOCUMENT_DISP DIPNV Constr. Prog. Report COBK_AWOBJ /SAPPCE/PNV_AC_DOCUMENT_DISP EACC Accounting Engine CON_FIN_AC_DOCUMENT_SENDER EBKPF External accounting EBKPFAWOBJ ECCS Consolidation ENTD Deposit Refund Prog. AC_DOCUMENT_SENDER_BEBD EXTX Excise Tax BKPF-AWOBJ X FI_DOCUMENT_SENDER FARA FARR_ACCR_NAVIGATION FARR Rev. Recognition FARR_ACCR_NAVIGATION FCO Failure Cost Proc. FCO_DOCUMENT_DISPLAY FCVS FDIS Cash Management FEBEP Acct statement item FEBEPAWOBJ DISPLAY_AS_LINE FERC FERC: Reporting COBK_AWOBJ FERC_DOCUMENT_SENDER FICA Contract A/R and A/P FILA Lease accounting BKPF_AWOBJ AMFI_SHOW_AM_DOCUMENT FILC Consolidation FKKCO Contract A/R and A/P FKK_AC_DOCUMENT_FICA FKKKO FI-CA Document FKK_DOCUMENT_SENDER FKKSU Contract A/R and A/P FKK_AC_DOCUMENT_FICA FMBHI FM_LEDGER_SHOW_ORIG_DOCUMENT FMBL Budgetary Ledger FMBTR FM_LEDGER_SHOW_ORIG_DOCUMENT FMCA Funds Management doc FMCCF Cmmt Carryforw. Doc. FM_CCF_DOCUMENT_DISPLAY FMCJ PS Cash journal FMCJ_DOCUMENT_SENDER FMCO Proj.Cash Mngmnt doc COBK_AWOBJ PS13_CASH_DOCUMENT_SENDER FMED BCS Entry Documents FMED_S_AW FMKU_ED_DISPLAY FMLI BCS Change Document FMLI_S_AW FMKU_LI_DISPLAY FMPSO Request document BKPF_AWOBJ FI_PSO_DOCUMENT_SENDER FMRES Earmarked funds FM_LEDGER_SHOW_ORIG_DOCUMENT FOTP One-Time Postings BKPF_AWOBJ FPL00 FPL01 FPL02 FPL03 FS-BA GL Bank Analyzer AC_DOCUMENT_SENDER_FSBA FS-PM Policy Management GLAL0 FlexGL Allocation FI_DOCUMENT_SENDER GLX Spec. purpose ledger GLYEC Year-End Closing Doc FI_DOCUMENT_SENDER GM Grants Mgm. Doc. GMBD Grants Mgm. Doc. GM_BDGT_DOCUMENT_DISPLAY GMCTR Guaran. Min.Contract HRBLK Funds Block DOCUMENT_SENDER_HRFPM HRBUD Budget Planning DOCUMENT_SENDER_HRFPM HRCOM HR funds commitment DOCUMENT_SENDER_HRFPM HRPAY HR settlement post. AC_DOCUMENT_SENDER_HRPAY HRPRE HR funds precommt DOCUMENT_SENDER_HRFPM HRRES Funds Reservation DOCUMENT_SENDER_HRFPM HRTIM Time management post COBK_AWOBJ HRTIM_AA_DOC_SHOW_REMOTE IBKPF Document from IDoc FI_DOCUMENT_SENDER IDOC External IDoc doc. ISU IS-U billing request ISUDR ISU Agg. Invoice ISU_DEREG_RECTRANSF_DISP_DOC JVA Joint Venture JVAM Joint Venture BKPF_AWOBJ KADO Reval. of Act. Pstg CKMLDUVACT_DOCUMENT_SENDER KFPK Fixed price alloc. KFPRS_AC_DOCUMENT_SENDER_KFPK KOROP FS-RI Open Items KORUM FS-RI Transfer LOANS Loans X FVD_SM_SHOW_DOC MKPF Material document MKPF_AWKEY MB_DOCUMENT_SENDER_MKPF MLCU Cumulation fin.stats CKMLAVR_DOCUMENT_SENDER MLDUV Mat. Posting Reval. CKMLDUVACT_DOCUMENT_SENDER MLHD Material ledger MLHD_AWKEY CKML_F_AC_DOCUMENT_SENDER MYDLT Delta Posting Bal.Sh MY_DELTALAUF_RESULT_GET NFSC Nota Fiscal Brazil NFWRI ITMF_DOCUMENT_SENDER_NFWRI PAYRQ Payment request PCON Contract ME_DOCUMENT_SENDER PEAC Payment Engine X AC_DOCUMENT_SENDER_PE PORD Purchase order ME_DOCUMENT_SENDER PRCHG Price change MLHD_AWKEY CKML_F_AC_DOCUMENT_SENDER PREQ Purchase requisition ME_DOCUMENT_SENDER PYMTD Payment data REACC Real Estate document RE_INTERFACE_DOCUMENT_SENDER REACI Real Estate document RE_INTERFACE_DOCUMENT_SENDER RECOM Real Estate Contract RE_INTERFACE_CONTRACT_SENDER RESV Material Reservation FM_RESV_DOCUMENT_SENDER RETAX Real est. doc. in.tx RE_INTERFACE_DOCUMENT_SENDER RMBE SRM Document RMRP Invoice receipt X MRM_AC_DOCUMENT_SENDER_RMRP SLRV Only Special Pur.Ldg SLRV_DOCUMENT_SENDER TBRR Event-Based RevRecog FINS_TRR_CLOSE_DISPLAYDOCUMENT TR-TM Treasury Management TRCA_DOCUMENT_SENDER_TRTM TRAVL Posting: Travel Exp. AC_DOCUMENT_SENDER_TRAVL UKPF Rtl revaluation doc. SP_DOCUMENT_SENDER_UKPF VBAK Sales Document AC_DOCUMENT_SENDER_VBAK VBRK Billing document AC_DOCUMENT_SENDER_VBRK VBRR Original Document SD_REV_REC_ORIGINAL_DOCUMENT VOVP VZBL Int.doc.in PS SHOW_DOCUMENT_CREATE_REVERSE WBRK Vendor Bill.Document WLF_AC_DOCUMENT_SENDER_WBRK WTYD Warranty Claim WTYD_AWKEY WTYD_DOCUMENT_SENDER XIPAC /IRM/IPG_FI_TO_IP_NAVIGATE XIPST /IRM/IPG_FI_TO_IP_NAVIGATE Business Transaction Type Text ABAK Last retirement on Group Asset ABAW New Revaluation ABGA Asset Retirement ACEA ACE Accruals Postings ACPA One Allocation Plan Assess. ACPD One Allocation Plan Distrib. AFAB Legacy data transfer: pst. val ANZA Down Payment AS91 Legacy data transfer: cum. val AUAB Retirement of Inv. Meas. AuC AUFW Revaluation AUUA AuC: Transf. Retirem. to Asset AUUS AuC: Transf. Retirem. to Other AUUZ AuC: Transf. Acquis. on Asset AUVA AuC: Part. Clearing Down Pmnt AUVZ AuC: Part. Settlement of APC AUZF AuC: Acquisition Other Receiv. AZAF Down Payment Request AZBU Down Payment Clearing AZUM Down Payment - Transfer Postg AZVA AuC: Carryforward of Down Pmnt AZVZ AuC: Carryforward of APC CFPC CF: PCA internal posting COFI Online Posting from CO COFM CO-FM Integration GLA0 GL Act. Assessment:Integrative GLD0 GL Actual Distrib: Integrative GLYC G/L Year End Closing GPDP Distribution Primary Costs GPDS Distribution Secondary Costs HRP1 HR Payroll Accounting INVZ Investment Support JVAB JVA: Retirement JVUM JVA:Transfer Retirement KAMV Manual Cost Allocation KAZI Actual Cost Center Accrual KOAE Actual Settlement (external) KOAO Actual Settlement KPPE Std cost est. (ind.purch.ordr) KPPP Standard costing (primary) KPPS Standard costing (secondary) KPPZ Standard costing (overhead) KSII Actual Price Calculation KSPA Assessment to CO-PA KTDA COPA: TOP-DOWN: Actuals KZPI Actual Overhead (periodic) KZRI Interest Calculation (actual) NACH Post-Capitalization OCAB Asset OrgAssChg: Transfer RET OCZU Asset OrgAssChg: Transfer ACQ PRC5 Profit Center Document Entry RFAD Accrual / Deferral RFBC Balance Carryforward RFBU FI Postings RFCL Manual Clearing RFCV Foreign Currency Valuation RFIC Customer Invoice / Credit Memo RFIG FI Memo Postings RFIV Vendor Invoice / Credit Memo RFPI Incoming Payment RFPO Outgoing Payment RFRA G/L Realignment RFT1 Travel Expenses RFTP Tax Payable RKIB Actual Periodic Repostings RKIL Actual Inverse Activity Alloc. RKIU Actual Overhead Assessment RKIV Actual Overhead Distribution RKL Actual Activity Allocation RKLN Revaluation at Actual Price RKLT Actual Template Allocation RKLU Activity Allocation Reposting RKLX Predistribution of Fixed Costs RKU1 Repost Costs RKU2 Repost Revenue RKU3 Repost CO Line Items RMBK Adjustment of Inventory Value RMBL Material Debit/Credit RMM1 Post Closing Material Ledger RMM2 Material Ledger Initialization RMPR Change in Material Price RMRP Incoming Invoice RMRU Confirm Order RMWA Goods Movement RMWE Goods Receipt for Purch. Order RMWF Goods Receipt for Prodn. Order RMWI Inventory Difference RMWL Goods Issue Delivery RMWQ Goods Movement for Usage Dec. SD00 Billing Document TBCS COGS Split TBRR Event Based Revenue Recognitn. UMAB Asset Transfer (retirement) UMAI Posting Outflow Internal UMZI Posting Access Internal UMZU Asset Transfer (acquisition) SAP Tables Relationship | Material Master Record Material Master Record Table Category The table category defines whether a physical table exists for the logical table description defined in the ABAP Dictionary and how the table is stored on the database. Transparent Tables (TRANSP) There is a physical table on the database for each transparent table. The names of the physical table and the logical table definition in the ABAP/4 Dictionary agree. All the business and application data is stored in transparent tables. Structure (INTTAB) No data records exist on the database for a structure. Structures are used for the interface definition between programs or between screens and programs. Append Structure (APPEND) An Append structure defines a subset of fields which belong to another table or structure but which are treated as a separate object in the correction management. Append structures are used to support modifications. Pooled table Pooled tables can be used to store control data (e.g. screen sequences, program parameters or temporary data). Several pooled tables can be combined to form a table pool. The table pool corresponds to a physical table on the database in which all the records of the allocated pooled tables are stored. Cluster table Cluster tables contain continuous text, for example documentation. Several cluster tables can be combined to form a table cluster. Several logical lines of different tables are combined to form a physical record in this table category. This permits object-by-object storage or object-by-object access. In order to combine tables in clusters, at least part of the keys must agree. Several cluster tables are stored in one corresponding table on the database. Generated view structure (VIEW) A structure is generated for a view during activation. This structure is used as the interface for the runtime environment. It is not usually displayed in the ABAP Dictionary. Internal Table Internal tables are dynamic data objects containing any number of rows with a common row type. Internal tables are particularly well suited for editing mass data in business applications. As well as the row type, the data type of an internal table is also defined by its table category and a table key. Row Type The row type can be a non-generic data type from ABAP Dictionary or global class or interface, a non-generic type in the local program, or a predefined ABAP type. Any types can be used as row types, such as elementary types, structured types, table types, and reference types. Table Category The table category defines how individual rows can be accessed: Standard tables : They are managed using a row index. New rows can either be appended to end of the table or inserted at specific positions. Individual rows are accessed using the table key or the row index. Sorted tables : They are also managed using a row index, but are sorted by the table key in ascending order. New rows can be inserted or appended only if they are sorted. The rows are accessed in the same way as in standard tables. Hashed tables : They are managed using a hash algorithm. The rows are accessed using the table key only. Index operations are not possible. Generic Table Categories Two other generic table categories exist that can be used when typing formal parameters and field symbols. Any Table : covers all table categories Index Table : only covers those where index operations are possible (namely standard tables and sorted tables) Table Key Internal tables have a primary table key and can also have secondary table keys. If the row types are structured, the table key can consist of a list of structure components. Alternatively, the pseudo component table_line can be used to specify the entire table row as a key. Another option is to specify the standard key DEFAULT KEY. This key contains all components that are not numeric and are not themselves table types. The primary table key of a standard table can also be empty. Table keys in standard keys are always non-unique, which means multiple rows in the same table can have the same key. Hashed tables, on the other hand, always have a unique key. In sorted tables, this property can be defined using the additions UNIQUE and NON-UNIQUE. Editing Internal Tables Internal tables can be edited, for example, using the statements: READ TABLE LOOP AT INSERT INTO TABLE MODIFY TABLE DELETE TABLE Example Declares an internal table itab with a structured row type Fills the table by inserting rows Reads the rows sequentially in a loop / Assigns the fifth row to a field symbol declared inline * 1 Declare an internal table * --- DATA: BEGIN OF struc, col1 TYPE i, col2 TYPE i, END OF struc, itab LIKE STANDARD TABLE OF struc. * 2 Inserting rows * --- DO 10 TIMES. struc-col1 = sy-index. struc-col2 = sy-index ** 2. INSERT struc INTO TABLE itab. ENDDO. * 3 Reads in a loop * --- LOOP AT itab INTO struc. WRITE: / struc-col1, struc-col2. ENDLOOP. READ TABLE itab INDEX 5 ASSIGNING FIELD-SYMBOL(). WRITE: / -col1, -col2. References: SAP (www.sap.com ); SAP Support (support.sap.com ); SAP Help (help.sap.com ); SAP Blog (blogs.sap.com )

The cost element categoryhas a technical control function. It determines whether you can post to a cost element directly or indirectly. Direct posting: You post a fixed amount to an account by specifying the account number. You can post directly to all primary cost elements. Indirect posting: The system determines the account automatically at the time of posting You can not enter the account number with the posting transaction. You can only post indirectly to secondary cost elements. Cost Elements The cost element categoryhas a technical control function. It determines whether you can post to a cost element directly or indirectly. Direct posting: You post a fixed amount to an account by specifying the account number. You can post directly to all primary cost elements. Indirect posting: The system determines the account automatically at the time of posting You can not enter the account number with the posting transaction. You can only post indirectly to secondary cost elements. Cost Element Category Primary cost elements 01 : Primary cost element This category of cost element can be debited with all primary postings, for example, in Financial Accounting (FI) or Materials Management (MM). 03 : Accrual cost element / percentage method This cost element category may only be used in Cost Center Accounting (CO-OM-CCA) with the percentage method of accrual calculation. You can post directly in Financial Accounting to register when actual costs are incurred. The system uses this cost element category to post accrued costs in Cost Center Accounting. If you do not want to consider actual costs (for example, additional costs), you can create this category of cost elements exclusively in Controlling. You define the account in the chart of accounts, but you do not need to create the account as a G/L account in Financial Accounting. 04 : Accrual cost element / target=actual method This cost element category may be used only in the target=actual method of accrual calculation with Cost Center Accounting. You can post the cost directly from Financial Accounting to register when actual costs are incurred. The system uses this cost element category to post accrued costs in Cost Center Accounting. If you do not want to consider actual costs (for example, additional costs), you can create this category of cost elements exclusively in Controlling. You define the account in the chart of accounts, but you do not need to create the account as a G/L account in Financial Accounting. 11 : Revenue elements The cost element category is used to post revenues. Warning : Revenues are displayed in Controlling with a negative sign (-). An exception to this is Profitability Analysis (CO-PA). In CO-PA revenues are displayed with a positive sign (+). Caution : If you post revenues to cost centers, the values appear as statistical information only. This means that you can repost revenues for posting adjustments to other cost centers, but another allocation is not possible. Revenues are ignored in iterative activity price calculation and are therefore not included in the allocation price of an activity type. Note : Before you define a revenue element, check whether the posting is in the form of a credit memo whose costs you want to take into account. If this is the case, use cost element category 01 (primary cost elements), not category 11 (revenue elements). These credit memos appear as negative costs and are processed in the same way as all other cost elements of category 01. Example : Cost center with revenue posting Costs = 10,000 Revenues = -5,000 Cost effective = 10,000 Cost center with credit entry Costs = 10,000 Credit memo = -5,000 Cost effective = 5,000 12 : Sales deduction Cost elements of this category are used to post sales deductions. Sales deductions (reductions, adjustments, corrections) are adjustment or deduction postings of revenues, such as discounts and rebates. Certain revenues, such as freight charged separately in the invoice, surcharges for small quantities or special orders, are not classified as sales deductions. Such value items are defined as revenue elements. The account assignment options for cost elements of this category are the same as for cost element category 11 (revenue elements). Values on cost centers are displayed statistically only (as for revenues). 22 : External settlement Cost elements of this category are used to settleorder, project, or cost object costs to objects outside of Controlling. CO external objects can be, for example, assets (AM), materials (MM) or G/L accounts (FI). The system always creates an accounting document when you settle to external objects. You cannot use this cost element category for settlement to objects within Controlling (such as cost centers, orders, or projects). Use secondary cost element category 21 for internal settlement. In contrast to settlement to CO-external objects, no accounting documents are generated by the system for settlement to CO internal objects as the value flow occurs exclusively within CO. 90 : Cost element for balance sheet accounts in Financial Accounting Cost elements of this category are generated automatically when you create cost elements in Controlling that have asset reconciliation accounts, that is, special balance sheet accounts, as corresponding general ledger accounts in Financial Accounting. You cannot change this cost element category in CO master data maintenance. FI does not require CO account assignments of category 90. However, if you do enter a CO account assignment, this is only updated statistically even for true CO objects. Cost elements of category 90 enable you to control the costs of an order or project budget during the acquisition of fixed assets that can be directly capitalized. To achieve this you enter a capital investment order or work breakdown structure (WBS) element in the appropriate field in the asset master data. The Asset Management (AM) component ensures that when the asset is acquired, the order or WBS element is automatically entered in the document. In Controlling, orders and WBS elements are debited statistically. This statistical debit is checked with the budget during availability control. The system does not support other uses of category 90 cost elements at present. You cannot plan using these cost elements. Secondary cost elements 21 : Internal settlement This cost element category is used to settle (further allocate) order or project costs to Controlling (CO) internal objects. CO-internal objects are, for example, orders, profitability segments, cost centers and projects. You cannot use this cost element category for settlement to CO-external objects (such as fixed assets, materials, or G/L accounts). Use primary cost element category 22 for external settlement. 31 : Order/project results analysis This cost element category is used to save the order/project results analysis data on the relevant order/project. 41 : Overhead rates This cost element category is used to further allocate overhead costs using overhead ratesfrom cost centers to orders. 42 : Assessment This cost element category is used to allocate costs using the assessment method. 43 : Allocation of activities/processes This cost element category is used during internal activity allocationand in Activity-Based Costing. 50 : Incoming orders: sales revenues This cost element category is used for sales revenues from sales orders with incoming orders in the current period of the project-related incoming order. 51 : Incoming orders: other revenues This cost element category is used for other revenues, such as imputed interest, from sales orders with incoming orders in the current period of the project-related incoming order. 52 : Incoming orders: costs This cost element category is used for costs from sales orders with incoming orders in the current period of the project-related incoming order. 61 : Earned values This cost element category is used for the earned values from the earned value analysis in Project System. Article written by Luiz C. Mariani | Published July 2023 Reference sources: SAP ( www.sap.com ); SAP Support ( support.sap.com ); SAP Help ( help.sap.com ); SAP Blog ( blogs.sap.com )

Setting up a Brazilian Company Overview Incorporation is the process by which a new or existing business registers as a company. A company is a legal entity with a separate identity from those who own or run it. The vast majority of companies are limited liability companies where the liability of the members is limited by shares or by guarantee. Here some info about Brazil, pros and cons, and legal requeriments, before deciding to registry a legal entity in national territory. Country Brazil (in English) / Brasil (in Portuguese) Capital City Brasilia (Not Rio de Janeiro. LOL) ISO Codes BR / BRA Country Code: +55 Language Portuguese Population 217 Milion Area (KM²) 8 Million Currency BRL (Brazilian Real | R$) MEI Empresário Individual Sociedade Limitada Unipessoal Sociedade Empresária Limitada Sociedade Simples Sociedade Anônima SLU criada 2019 EIRELI extinta 2021 Limited Liability Partners Minimum Share Capital Revenue Limitation Tax Regimes Incorporation Limitation Selling Company Limitation Employees Limitation Activities Limitation Local Address Local Accountant https://www.contabilizei.com.br/contabilidade-online/entenda-quais-sao-os-tipos-de-empresa-para-abrir-no-brasil/ https://agilize.com.br/blog/empreendedorismo/mei-ei-slu-e-ltda/ https://www.contabilizei.com.br/contabilidade-online/diferenca-entre-mei-ei-eireli-slu/

Topics: UK Localisation, UKGAAP, MTD Making Tax Digital, HMRC, VAT, WHT Withholding Tax, CIS, DRC, Document and Reporting Compliance, Tax Year, K4 Fiscal Year, Bank Communication, Payments, BACS, CHAPS, FAST PAYMENT, SWIFT, SEPA, GBP Britsh Pound Sterling, EC Sales, VAT Return, Audit Files, UK Localization Up UK Localisation UK Localisation Overview What is HMRC? Making Tax Digital (MTD) Financial Accounting Treasure (Accounts Payable and Bank Accounting) Master Data | Business Partner Master Record Fiscal Year UK Statement about the Fiscal Year SAP Configuration | Fiscal Year Withholding Taxes Withholding Taxes Reporting e-Reporting / Document and Reporting Compliance (DRC) UK Localisation Overview The complexity of UK localisation is very low, which makes the SAP solution a good option. Achievable very easily with a minimum configuration effort compared to many other countries. Main SAP localisation points Financial Accounting Taxation Treasure (Accounts Payable and Bank Accounting) General Information ISO Codes: GB / GBR Country Codes: +44 Capital: London Official Language(s): English (Main Language) Currency: GBP (British Pound Sterling) Currency The local currency of the United Kingdom is the Pound Sterling or also known as the Great Britain Pound (GBP / symbol £ ), and companies must prepare their legal reports in this currency. No other additional currencies, like hard currency or index currency are legally required, but of course most of the companies are multinationals companies and use the group currency for reporting purposes. Companies can trade (buy and sell) in any other currency, but the amounts must be converted to GBP for reporting and tax purpose. Fun fact : In the UK, a penny is a coin worth 1/100th of a pound, as in US, a cent is a coin worth 1/100th of a dollar. The plural of penny is pence, or it can simply refer to it as "p" (1p, 2p, 5p, 10p, 20p, 50p). The slang for pound is "quid", while in the US, the slang for dollar is "buck". Language The main language of the United Kingdom is English. If multiple languages are required in the SAP implementation, these languages must be installed. Fun fact : Despite the main language being English, in some other parts of the UK they can have a completely different language. Wales, they can speak Welsh. Scotland, they can speak Gaelic. Northern Ireland, they can speak Irish Gaelic. What is HMRC? We can't start talking about UK or UK Taxation without a brief introduction about HMRC (Her/His Majesty's Revenues and Customs). HMRC is the UK’s tax, payments and customs authority. In other words, it is the department of the UK Government responsible for administering and collecting taxes in the UK. Fun fact : The UK Government uses SAP with the Public Sector industry solution to deliver better public value with integration between processes, budgeting and grant and fund management, while staying agile. Making Tax Digital (MTD) Making Tax Digital (MTD) is a UK government initiative that sets out a vision for the 'end of the tax return' and a 'transformed tax system', announced in 2015 and originally intended to be in place by 2020. HMRC states that the main goal of MTD is to make tax administration more effective, more efficient and simpler for taxpayers. The changes are expected apply to a wide range of taxpayers, including most businesses, micro-businesses, self-employed people and landlords, as well as individual taxpayers. Making Tax Digital is a key part of the government’s Tax Administration Strategy. It will help reduce the tax gap by requiring businesses and individuals to: Keep digital records Use software that works with Making Tax Digital Submit updates every quarter, bringing the tax system closer to real-time The benefits of Making Tax Digital Making Tax Digital supports HMRC’s plans to digitalise the tax system. It will: Make it easier for individuals and businesses to get their tax right Mean customers can integrate tax management with a range of business processes through software Contribute to wider productivity gains for businesses by encouraging digitalisation It will help reduce the amount of tax lost to avoidable errors due to the: Improved accuracy of digital records Additional help built into many software products Digital records being sent directly to HMRC Financial Accounting Accounting Principles Except where other types of accounting principles, such as IFRS, may be required, UK companies are used to preparing their financial statements in accordance with UK GAAP, which is frequently amended. So it is necessary to pay attention on the FRS Financial Reporting Standard amendments. FRS 100 Application of Financial Reporting Requirements FRS 101 Reduced Disclosure Framework FRS 102 The Financial Reporting Standard applicable in the UK and Republic of Ireland FRS 103 Insurance Contracts FRS 104 Interim Financial Reporting FRS 105 The Financial Reporting Standard applicable to the Micro-entities Regime Fun fact : The primary difference between the two systems is that GAAP is rules-based and IFRS is principles-based Treasure (Accounts Payable and Bank Accounting) SAP localisation offers most payment formats on the market to meet the specific requirements of major UK banks. The main UK banks Lloyds Bank Barclays Bank HSBC Bank The Royal Bank of Scotland The most common interbank payment schemes in UK BACS (Bankers' Automated Clearing System) It's a regulated payment system and is one of the most common ways that money is sent and received from bank to bank Transfer 2-3 days Limited value £20m or £999m depends on conditions CHAPS (Clearing House Automated Payment System) Transfer within seconds on working days excluding bank holidays Non-limited value FASTER PAYMENT These are electronic payments that can be made online, over the phone, in a branch or using self-service machines. Transfer within 2 hours (As long as the receiving bank uses Faster Payments too, the payment will arrive almost immediately) Limited value £250.000,00 SWIFT (Society for Worldwide Interbank Financial Telecommunications) Transfer 2-5 days on average Non-limited value SEPA (Single Euro Payments Area) Transfer 1-2 banking days Value limit depends on participants SAP Payment Processing Flow You can process your outgoing payments using predefined payment medium formats and bank statements for the United Kingdom as described in this section. The following image map guides you through the payment process. Payment Medium Formats and Bank Statements The GB_BACS format tree creates payment media for domestic, vendor payments and employee payments in the United Kingdom. The format complies with the standard header, data and trailer records for BACS telecoms transmissions. If the third-party product used for communication with BACS cannot upload the format supplied by SAP, copy and adapt the existing format as necessary. The payment medium program supports the creation of daily files, multi-processing day files, multi-file (bureau) submissions, and the alternative user number functionality. Warning : GB_BACSBOX and GB_BACWAY formats are obsolete. Please use the GB_BACS format instead. The following bank statements are available: CAMT.053, version 2 (CAMT.053.001.02) MT940 Master Data Identification Numbers Several transactions require that your business partners are identified using a specific tax or identification number. You maintain this information for each business partner in their master data. Maintaining Withholding Tax Data for Suppliers You configure tax data in the supplier master data so that withholding tax can be calculated and reported. Business Partner Master Record In the United Kingdom, business partners are identified by either their corporate or tax registration numbers. Several transactions require that your business partners are identified using a specific tax or identification number. You maintain this information for each business partner in their master data. The solution offers six tax categories for the United Kingdom: GB0 | | Valid for companies only Business Process: Electronic Customer Invoice and Electronic Supplier Invoice Description: A VAT registration number is a unique code issued to companies that are registered to pay VAT. GB1 | | Valid for natural persons only Business Process: Employee Master Record Description: Number assigned to an individual’s passport. GB2 | | Valid for natural persons only Business Process: Employee Master Record Description: The National Insurance Number is a number used in the United Kingdom in the administration of the National Insurance or social security system. It is also used for some purposes in the UK tax system. GB3 | | Valid for companies only Business Process: Filing Statutory Reports Description: The Company Registration Number is to identify the company and confirm that is has been registered with Companies House as a legal entity. GB4 | Business Process: Filing Statutory Reports Description: A Unique Tax Reference is unique to every UK taxpayer. Whether you are an individual or part of a partnership or company, a Unique Tax Reference is needed to file a tax return. GB6 | Business Process: Northern Ireland Protocol Description: You need a VAT number starting with XI to trade under the Northern Ireland Protocol. The VAT registration number of GB0 , GB3 , GB4 , and GB6 must have the following format: A maximum of 14 characters long 2-digit country/region ISO code for the first 2 characters Entered continuously without any gaps Hint : Do not forget to check the Natural Person field Manage Business Partner Master Data T-Code: BP Fiori App: Manage Business Partner Master Data app Role: FLVN00 Supplier (Fin. Accounting) Identification Numbers Section: Identification -> Tax Numbers Maintain: Tax Category (GB0, GB1, GB2, GB3, GB4 and GB6) Withholding Tax Codes Section: Company Codes -> Withholding Taxes Maintain: Withholding Tax Type Withholding Tax Code Subject to Withholding Tax ( Activate to be able to select the withholding tax type while creating the invoice) Withholding Tax Codes - CIS Check Details (if necessary) Section: Company Codes -> Vendor: Country-Spec. Enh. 2 -> Great Britain CIS Check Maintain: Business Type | You define the type of business the subcontractor is operating (Sole Trader, Partnership, Trust or Company) Verification Status | You set the status of the subcontractor. Before a contractor engages with a subcontractor in a Construction Industry Scheme contract, they must verify the subcontractor with the UK's Tax Authority, HMRC Verification Number | HMRC provides the principal contractor with a verification number for the subcontractor that is being verified Tax Status | You define if and what percentage of withholding tax should be deducted from the payment to the subcontractor and paid over to HMRC by the principal contractor Fiscal Year The fiscal year in the UK runs from 6th April one year to 5th April the following year. It's also known as the 'tax year'. SAP Fiscal Year Variant Most company codes in UK are set up with the standard fiscal year variant "K4". [ K4 ] Calendar year, January to December. Which contains twelve normal periods that correspond to the calendar months, plus 4 special periods for adjustments. But other company codes are set up, to make it easier, with the "V3" variant or a "Z" variant from April to March. [ V3 ] April to March, plus 4 special periods for adjustments. Warning: To set it up correctly, the requirement must come from business, to respect what is best for the company. UK Statement about the Fiscal Year HMRC (United Kingdom Government) is aware of the complexity of its tax year and has made some studies and estimates to see the possibility to changing it. In its own words, released in September 2021, the report "The end date of the UK tax year: exploring the potential for change" from the "Office of Tax Simplification" says: "Moving to a tax year end date of 31 March would involve a substantial investment by the UK government and the private sector. It would entail major changes to legislation and to government and businesses’ systems and operating procedures. The overall scale of what would be involved in a move to 31 March would be substantially lower than for 31 December, though the extent of the systems impacts could be comparable. A move to 31 December would involve most of the transitional issues and ultimately be a much larger and costlier exercise. Tax Simpification SAP Configuration | Fiscal Year Fiscal Year Variant T-Code : OB09 Set up the fiscal year variant in SAP. Assign Company Code to Fiscal Year T-Code : OB37 Company Code Global Data T-Code : OB06 Check fiscal year variant. Warning : The screens, path and information may be different from SAP to SAP, depending on the version. Those screens above are from SAP S/4 HANA. Withholding Taxes In United Kingdom, you need to withhold tax on a variety of expenditure, in accordance with the local regulations. One example of Withholding tax in UK: Construction Industry ("CIS" Construction Industry Scheme) WHT Rate of 20% (vendor registered under CIS) WHT Rate of 30% (vendor not registered under CIS) Warning : Always talk to the company's tax team to understand their tax situation. Procedure Configure the necessary withholding tax settings in the system. This includes defining withholding tax types, tax codes, and so on. Maintain the relevant withholding tax data for business partners. Process withholding tax reporting (Statutory Reports app available on SAP Fiori Launchpad / DRC). Withholding Tax Configuration 1. Checking Withholding Tax Countries/Regions Make changes to the country/region ID in your system, if needed. 2. Defining Reasons for Exemption You can define the tax exemption reason to waive the required withholding amount. Example of exemption reasons available for United Kingdom is GP (Gross Payment Status). 3. Defining Withholding Tax Types for Payment Posting You can define the withholding tax type for payment postings in order to withhold and calculate tax when you make a payment. Withholding Tax Type: 01 Description: Construction Industry Scheme Calculation Base Amount: Net Amount Calculation Rounding Rule: Apply commercial rounding to withholding tax amount Cash Discount: Cash discount calculation before withholding tax calculation Post Withholding Tax Amount: Yes Accumulation Type: No accumulation Controls: Allow manual entry of withholding tax amount Minimum/Maximum Base Amount: Withholding tax code level Minimum/Maximum Withholding Tax Amount: Withholding tax code level Central Invoice: No Minimum Check: Minimum check at item level 4. Defining Withholding Tax Codes Use withholding tax codes to specify the tax rates and any applicable exemptions, as per the local regulations. Withholding Tax Type: 01 Withholding Tax Code: 20 Description: Registered Subcontractor Official Withholding Tax Key: Not applicable (Leave this field blank) Percentage Subject to Tax: 100 Posting Indicator: 1 Withholding Tax Rate (%): 20 Income Type: Not applicable (Leave this field blank) Post Indicator 1 : Withholding tax amount is deducted from the customer/vendor line item amount and/or bank line item, and a withholding tax line item automatically created. 2 : (Grossing UP) The system automatically creates 2 withholding tax line items with opposing debit/credit signs. The withholding tax amount is then increased by the factor "1/(1-p)", where "p" is the withholding tax rate. You cannot choose this option if withholding tax scale apply. (This option is common used in countries like Argentina for foreign vendors) 3 : The system automatically creates 2 withholding tax items with opposing debit/credit signs 5. Assigning Withholding Tax Types to Company Code Assign withholding tax types to each company code for successful withholding tax calculation. Company Code: Company Code ID Withholding Tax Type: 01 Recipient Type: Not applicable (Leave this field blank) Withholding Tax Agent: Yes (Check the box) Withholding Tax Obligated From: 01/01/2015 Obligation to Withholding Tax Until: 12/31/9999 Withholding Tax Number: Not applicable (Leave this field blank) Subject to Withholding Tax: Not applicable (Leave this field blank) Self-Withholding Agent: Not applicable (Leave this field blank) Exemption: Not applicable (Leave this field blank) 6. Activating Extended Withholding Tax Activate extended withholding tax for each new company code to calculate and generate withholding tax report. Company Code: Company Code ID Company Name: Company Code Name Extended Withholding Tax Activation Status: Activated 7. Determining Accounts for Withholding Tax Define general ledger accounts for the withholding tax transactions. These accounts are required for each withholding tax posting. Withholding Tax Reporting Taxes withheld need to be reported to the tax authorities on regular basis, as mandated by tax regulations of the country or region. Withholding Taxes Reporting The withholding tax report is generated based on the information collected from specific supplier documents such as, supplier cleared invoices, supplier cleared credit memos, open down payments, and so on. You can use the United Kingdom Withholding Tax report to generate the withholding tax declaration, and submit to the government. You can use the Run Statutory Reports app to generate the Withholding Tax. The system generates an XML file that meets the requirements for automatic submission to the government gateway. Additionally, PDF documents get generated with the details of the tax that has been withheld. You can share the PDF output with the respective business partners. Warning : This section is related with DRC reporting. Points to Note All Withholding Tax reports in DRC support Extended Withholding Tax only Classical Withholding Tax reporting is not supported in the reports GB DRC reports support Vendor side withholding tax reporting only GB reports pick the following types of documents for reporting: Cleared Vendor Invoices, Cleared Credit Memos & Open Down payments Generating the Withholding Tax Report 1. To get a list of the reports that require actions Enter selection parameters that define the reporting period and choose the GB_WHT_CIS300 (Great Britain Withholding Tax) report in the search help of the Report Name field (reporting entity: GBGRPENTY). 2. Choose one or more reporting statuses as required. You can also enter additional filtering options, such as the submission due date, the reporting year, or the country/region. 3. Choose Go. The app displays a list of the reporting tasks for each reporting period that you can further process. 4. Click the row of the report you want to process and choose New Run. You can enter further filtering options, such as the company code and posting date. Choose a run option. You can choose to generate the report run immediately or schedule the runs for a later point in time. For report runs, that may take a long time to process, you can choose to run the reports in the background. 5. Choose Run. Hints : 1. DRC: The electronic submission with the SAP Document and Reporting Compliance service is optional. 2. Report Accepted: If the report is accepted by the Government, the reporting task will be closed and you will have to run the report in correction phase. 3. Report Rejected: If the report is rejected by the Government, you can regenerate the reporting using the same task and submit it again. e-Reporting / Document and Reporting Compliance (DRC) The following features are supported in the UK reports by DRC: Feature Withholding Tax Report EC Sales List VAT Return Reverse Charge Sales List Audit Files (HMRC) Payment Manual Adjustment Yes Yes Yes Yes Yes Yes Data Preview Yes Yes Yes Yes Yes Yes Electronic Communication with the Government Gateway Yes Yes Yes Yes No No Correction and Additional Correction Phases Yes Yes No Yes No No Reporting Activity – Manage Tax Items No Yes Yes Yes No No Reporting Activity – Post Tax Payable No No Yes No No No Embedded Analytics Yes Yes Yes Yes Yes Yes 1. Withholding Tax Report The withholding tax report is generated based on the information collected from specific supplier documents such as, supplier cleared invoices, supplier cleared credit memos, open down payments, and so on. You can use the United Kingdom Withholding Tax report to generate the withholding tax declaration, and submit to the government. You can use the Run Statutory Reports app to generate the Withholding Tax. The system generates an XML file that meets the requirements for automatic submission to the government gateway. Additionally, PDF documents get generated with the details of the tax that has been withheld. You can share the PDF output with the respective business partners. 2. Great Britain - Northern Ireland EC Sales List The EC Sales List (ECSL) forms the basis of the information shared between the tax authorities of EU Member States. If you are a VAT-registered entity, you must complete an EC Sales List when goods or services are transferred to an entity which is VAT-registered in another EU Member State. This includes activities such as: Supplying goods and/or services to a VAT-registered entity in another EU Member State. Providing a credit note to a VAT-registered entity in another EU Member State. Arranging triangular deals between VAT-registered entities in different EU Member States. The document for the EC Sales List must include the following information: VAT registration number of business partner maintained in the business partner master data. VAT registration number of business partner in FI document. This data is filled in automatically if you record the reporting country in the supplier or customer invoice and the tax country in the sales invoice. Tax code with respective EU code. 3. VAT Return The Great Britain VAT Return report enables you to generate your VAT Return and fulfill the statutory reporting requirements in the United Kingdom. You generate this report in the Run Statutory Reports app. The VAT Return report (report category GB_VAT_DCL) generates the VAT Return in a JSON file format. 4. Reverse Charge Sales List You can use the Run Statutory Reports app to generate the Reverse Charge Sales List. 5. Audit Files (HMRC) The HMRC Audit Files report enables you to generate audit files for Sales and Distribution, Material Management, and Financial and fulfill any requests from the tax authorities for providing data for off-site data analysis to ensure correct VAT accounting in the United Kingdom. You generate this report in the Run Statutory Reports app. The HMRC Audit Files report (report category GB_HMRC) generates the audit files in TXT format. You can generate one audit file or the three audit files based on the auditor's request. 6. Payment Practices and Performance The Great Britain Payment Practices and Performance report enables you to generate the required payment data and fulfill the requirements in the United Kingdom. You generate this report in the Run Statutory Reports app. The Great Britain Payment Practices and Performance report (report category GB_PPPR) generates the payment data in ALV format. The report contains information about the proportion of invoices paid beyond agreed terms, average time taken to pay invoices from the date of issue, proportion of invoices paid within certain periods, amount of interest that has been paid, and amount of interest liable to be paid. Parameters Specific to Report Entity The following parameters are used by the "GBGRPENTY" reporting entity, and are valid for all statutory reports for the United Kingdom. Parameter | Description | Sample Value Example GB_ADDRESS | Address of the taxpayer | Clockhouse Place, Bedford Road, Feltham, Middlesex TW14 8H GB_COMPANY_NAME | Company name of the taxpayer | Company Name GB_SENDERID | Sender ID | VATDEC045a07 GB_URI_VENDORID | The URI of the owner of the current process, which is used by the Gateway to uniquely identify the application from which the message originates | 971 GB_VAT_VATREGNO | VAT registration number of the taxpayer | 999900007 References: SAP (www.sap.com ); HM Revenue & Customs (www.gov.uk )

Value Added Tax (VAT) is an indirect tax levied on goods and services across Europe and worldwide. The European Union (EU) has mandated VAT tax for all its member states, which are required to implement and enforce it in accordance with the EU VAT code. European Union European Union Overview EU Taxation | VAT Setting up a European Company EU Countries European Union Overview The EU is characterised by its cultural and linguistic diversity, which EU citizens can move freely between member states to live, work, study or retire in another country. As a political entity, the European Union has two original core objectives, development of a common market, subsequently becoming a single market, and a customs union between its member states. EU Capital: Brussels in Belgium (Considered Capital) EU Flag: It consists of a circle of 12 golden stars on a blue background EU Languages: 24 official languages. 3 main languages (English, French and German) EU Financial Reporting: IFRS (Under EU rules, listed companies must prepare their consolidated financial statements in accordance with IFRS) EU Major Institutions: Brussels, Belgium: Commission, European Council, Council of the EU, Parliament Frankfurt, Germany: European Central Bank Luxembourg City, Luxemburg: Court of Auditors, Court of Justice, Council of the EU, Secretariat of the Parliament, Commission Strasbourg, France: Parliament (Primary) EU Taxation | VAT Value Added Tax (VAT) is an indirect tax levied on goods and services across Europe and worldwide. The European Union (EU) has mandated VAT tax for all its member states, which are required to implement and enforce it in accordance with the EU VAT code. The EU itself does not directly collect VAT tax; instead, it has established a comprehensive VAT code that regulates the collection and enforcement of VAT by each member state. This ensures consistency and fairness in VAT collection across the EU, while allowing member states some flexibility in setting their own VAT rates. In the early days of the EU, VAT was introduced at a standard rate of 10%, which gradually increased over the years. The standard rate of 10% VAT was applicable to all the EU member states when VAT was first introduced in 1967. France was the first country to implement VAT, but the standard rate of 10% was applied across all member states at that time. Currently, EU member states have different VAT rates for different types of goods and services. Warning : These rates are indicative only. Please use it as an example. Updated: 2023 Country Standard VAT Rate Intermediate Reduced Super Reduced First Reduced Second Reduced Thrid Reduced Austria 20% 13% 10% Belgium 21% 6% 12% Bulgaria 20% 9% Croatia 25% 13% 5% Cyprus 19% 9% 5% Czech Republic 21% 15% 10% Denmark 25% Estonia 20% 9% 5% Finland 24% 14% 10% France 20% 10% 5.5% 2.1% Germany 19% 7% Greece 24% 13% 6% Hungary 27% 13.5% 9% 4.8% Ireland 23% 13.5% 9% 4.8% Italy 22% 10% 5% 4% Latvia 21% 12% 5% Lithuania 21% 9% 5% Luxembourg 16% 13% 7% 3% Malta 18% 7% 5% Netherlands 21% 9% Poland 23% 8% 5% Portugal 23% 13% 6% Romania 19% 9% 5% Slovakia 20% 10% Slovenia 22% 9.5% 5% Spain 21% 10% 4% Sweden 25% 12% 6% Setting up a European Company Incorporation is the process by which a new or existing business registers as a limited company. A company is a legal entity with a separate identity from those who own or run it. The vast majority of companies are limited liability companies where the liability of the members is limited by shares or by guarantee. This is a macro level overview to understand what to consider when you want to open a business in the European Union. What are the points you need to take into account from an accounting, legal and tax point of view. There are many benefits to having a company in EU. It provides a single market with millions of consumers, and the possibility to expand and reach new markets. Key Advantages One of the largest markets in world A very stable economy Accessibility to a good financial instruments Large pool of skilled workers Simple and favourable tax regimes Keep in mind, there are many other points that need to be considered. It may be worthwhile seeking professional advice from a solicitor or accountant before deciding whether an incorporated company is the best way for you to run your business. Comparison table of some European Union Countries Country Czechia Hungary Poland Slovakia Capital City Prague Budapest Warsaw Bratislava Language Czech Hungarian Polish Slovak EU Member Since 2004 Since 2004 Since 2004 Since 2004 Schengen Member Yes Yes Yes Yes Population 11 Million 10 Million 38 Million 5.5 Million Area (KM²) 79,000 93,000 312,000 49,000 Currency CZK HUF PLN EUR Corporate Tax 19% 9% 9% ³ 21% ² Dividend Tax ¹ 15% 15% 19% 7% VAT (Standard Rate) 21% 27% 23% 20% Limited Company (LLC) S.R.O. KFT SP. Z.O.O S.R.O Incorporation Time 2-5 Days 4-5 Days 3-4 Weeks 3-4 Weeks Minimum Share Capital 1 EUR 8K EUR 1,250 EUR 5K EUR Remote Incorporation Yes Yes ⁴ Yes Yes EU VAT Number 2 Months Immediately 1-2 Months 30 Days Local Address Yes Yes Yes Yes Local Accountant Yes Yes Yes Yes 1 Dividend tax only applies to individuals who are tax residents in the given country. 2 If the company’s revenue remains below EUR 50,000, the corporate tax is 15%. 3 If the revenue exceeds EUR 2M. the corporate tax is 19%. 4 Travels may be required for company bank account opening. Warning : Take this comparison table below as an example only. The laws and taxations are dynamic and change very often. EU Countries Austria ISO Codes: AT / AUT Country Codes: +43 Capital: Vienna Official language(s): German EU member country: since 1 January 1995 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 1 December 1997 Belgium ISO Codes: BE / BEL Country Codes: +32 Capital: Brussels Official language(s): Dutch, French and German EU member country: since 1 January 1958 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 26 March 1995 Bulgaria ISO Codes: BG / BGR Country Codes: +359 Capital: Sofia Official language(s): Bulgarian EU member country: since 1 January 2007 Currency: BGN (Bulgarian Lev). Bulgaria has committed to adopt the euro once it fulfils the necessary conditions. Schengen: Bulgaria is currently in the process of joining the Schengen area. Croatia ISO Codes: HR / HRV Country Codes: +385 Capital: Zagreb Official language(s): Croatian EU member country: since 1 July 2013 Currency: EUR (Euro). Euro area member since 1 January 2023 Schengen: Schengen area member since 1 January 2023 Cyprus ISO Codes: CY / CYP Country Codes: +357 Capital: Nicosia Official language(s): Greek EU member country: since 1 May 2004 Currency: EUR (Euro). Euro area member since 1 January 2008 Schengen: Cyprus is currently in the process of joining the Schengen area. Czechia ISO Codes: CZ / CZE Country Codes: +420 Capital: Prague Official language(s): Czech EU member country: since 1 May 2004 Currency: CZK (Czech Koruna). Czechia is currently preparing to adopt the euro. Schengen: Schengen area member since 21 December 2007 Denmark ISO Codes: DK / DNK Country Codes: +45 Capital: Copenhagen Official language(s): Danish EU member country: since 1 January 1973 Currency: DKK (Danish Krone). Denmark has negotiated an opt-out from the euro and thus is not obliged to introduce it. Schengen: Schengen area member since 25 March 2001 Estonia ISO Codes: EE / EST Country Codes: +372 Capital: Tallinn Official language(s): Estonian EU member country: since 1 May 2004 Currency: EUR (Euro). Euro area member since 1 January 2011 Schengen: Schengen area member since 21 December 2007 Finland ISO Codes: FI / FIN Country Codes: +358 Capital: Helsinki Official language(s): Finnish, Swedish EU member country: since 1 January 1995 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 25 March 2001 France ISO Codes: FR / FRA Country Codes: +33 Capital: Paris Official language(s): French EU member country: since 1 January 1958 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 26 March 1995 Germany ISO Codes: DE / DEU Country Codes: +49 Capital: Berlin Official language(s): German EU member country: since 1 January 1958 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 26 March 1995 Greece ISO Codes: GR / GRC Country Codes: +30 Capital: Athens Official language(s): Greek EU member country: since 1 January 1981 Currency: EUR (Euro). Euro area member since 1 January 2001 Schengen: Schengen area member since 1 January 2000 Hungary ISO Codes: HU / HUN Country Codes: +36 Capital: Budapest Official language(s): Hungarian EU member country: since 1 May 2004 Currency: HUF (Hungarian Forint). Hungary is currently preparing to adopt the euro. Schengen: Schengen area member since 21 December 2007 Ireland ISO Codes: IE / IRL Country Codes: +353 Capital: Dublin Official language(s): Irish, English EU member country: since 1 January 1973 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Ireland has negotiated an opt-out from Schengen area. Italy ISO Codes: IT / ITA Country Codes: +39 Capital: Rome Official language(s): Italian EU member country: since 1 January 1958 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 26 October 1997 Latvia ISO Codes: LV / LVA Country Codes: +371 Capital: Riga Official language(s): Latvian EU member country: since 1 May 2004 Currency: EUR (Euro). Euro area member since 1 January 2014 Schengen: Schengen area member since 21 December 2007 Lithuania ISO Codes: LT / LTU Country Codes: +370 Capital: Vilnius Official language(s): Lithuanian EU member country: since 1 May 2004 Currency: EUR (Euro). Euro area member since 1 January 2015 Schengen: Schengen area member since 21 December 2007 Luxembourg ISO Codes: LU / LUX Country Codes: +352 Capital: Luxembourg Official language(s): French, German EU member country: since 1 January 1958 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 26 March 1995 Malta ISO Codes: MT / MLT Country Codes: +356 Capital: Valletta Official language(s): Maltese, English EU member country: since 1 May 2004 Currency: EUR (Euro). Euro area member since 1 January 2008 Schengen: Schengen area member since 21 December 2007 Netherlands ISO Codes: NL / NLD Country Codes: +31 Capital: Amsterdam Official language(s): Dutch EU member country: since 1 January 1958 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 26 March 1995 Poland ISO Codes: PL / POL Country Codes: +48 Capital: Warsaw Official language(s): Polish EU member country: since 1 May 2004 Currency: PLN (Polish Zloty). Poland is currently preparing to adopt the euro. Schengen: Schengen area member since 21 December 2007 Portugal ISO Codes: PL / POL Country Codes: +48 Capital: Lisbon Official language(s): Portuguese EU member country: since 1 January 1986 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 26 March 1995 Romania ISO Codes: RO / ROU Country Codes: +40 Capital: Bucharest Official language(s): Romanian EU member country: since 1 January 2007 Currency: RON (Romanian Leu). Romania has committed the euro once it fulfils the necessary conditions. Schengen: Romania is currently in the process of joining the Schengen area. Slovakia ISO Codes: SK / SVK Country Codes: +421 Capital: Bratislava Official language(s): Slovak EU member country: since 1 May 2004 Currency: EUR (Euro). Euro area member since 1 January 2009 Schengen: Schengen area member since 21 December 2007 Slovenia ISO Codes: SI / SVN Country Codes: +386 Capital: Ljubljana Official language(s): Slovenian EU member country: since 1 May 2004 Currency: EUR (Euro). Euro area member since 1 January 2007 Schengen: Schengen area member since 21 December 2007 Spain ISO Codes: ES / ESP Country Codes: +34 Capital: Madrid Official language(s): Spanish EU member country: since 1 January 1986 Currency: EUR (Euro). Euro area member since 1 January 1999 Schengen: Schengen area member since 26 March 1995 Sweden ISO Codes: SE / SWE Country Codes: +46 Capital: Stockholm Official language(s): Swedish EU member country: since 1 January 1995 Currency: SEK (Swedish Krona). Sweden has committed the euro once it fulfils the necessary conditions. Schengen: Schengen area member since 25 March 2001 References: European Union (european-union.europa.eu ); Global VAT Compliance (www.globalvatcompliance.com ); Helpers Central Europe (helpers-europe.com ); HM Revenue & Customs (www.gov.uk ); Wikipedia (www.wikipedia.org); Investopedia (www.investopedia.com )