Inhaltsverzeichnis

Alle Kapitel aufklappen
Alle Kapitel zuklappen
Preface
15
Target Audience
15
How to Read This Book
16
How This Book Is Organized
17
Conclusion
19
Acknowledgements
20
1 Introduction to Payment Modernization with SAP
21
1.1 Evolution of Enterprise Payment Processing
21
1.1.1 Background
22
1.1.2 E-Commerce Growth and Payment Gateway Innovation
24
1.1.3 Global Payment Schemes and Regional Innovation
27
1.2 Current Challenges in Payment Management
28
1.2.1 PCI DSS Compliance
28
1.2.2 Payment Method Expansion
29
1.2.3 Manual Processes
30
1.2.4 Integration Complexity
30
1.2.5 Security and Fraud
31
1.3 SAP Digital Payments Add-On Overview
33
1.4 Business Case for Payment Modernization
36
1.4.1 Quantifying Current State Costs
37
1.4.2 Strategic Benefits Beyond Direct Cost Savings
39
1.4.3 Stakeholder Alignment and Business Case Presentation
42
1.4.4 Linking Payment Modernization to Broader Digital Transformation
42
1.5 Summary
43
2 SAP Digital Payments Add-On Architecture
45
2.1 Technical Architecture
45
2.2 Core Components and Services
50
2.2.1 Core Service
50
2.2.2 Routing Engine
52
2.2.3 API Layer (Consumer API)
52
2.2.4 UI Integration APIs
54
2.2.5 PSP Adapters
56
2.2.6 Configuration UI
57
2.2.7 Security Components
61
2.2.8 Logging and Monitoring Services
62
2.3 Integration Points with SAP Landscape
62
2.3.1 SAP S/4HANA Integration
62
2.3.2 Integration with Other SAP Solutions and Third-Party Solutions
66
2.4 Security Architecture and Token Vault
69
2.4.1 PCI DSS Scope Reduction
69
2.4.2 PSP Abstraction, Data Storage, and Token Lifecycle Management
70
2.4.3 Authentication, Authorization, and Secure Credential Storage
71
2.5 High Availability and Scalability
73
2.5.1 High Availability
73
2.5.2 Scalability
74
2.6 Summary
75
3 Setup in SAP BTP
77
3.1 Prerequisites and Entitlements
77
3.1.1 Global Account Requirements
78
3.1.2 Subscription and Service Plans
78
3.1.3 User Types and Access Requirements
79
3.1.4 Add-On Prerequisites
80
3.2 Subscription and Tenant Configuration
80
3.2.1 Accessing the SAP BTP Cockpit
81
3.2.2 Creating Subaccounts
82
3.2.3 Service Marketplace Navigation
84
3.2.4 Add-On Subscription Process
86
3.3 Communication Systems and Arrangements
88
3.3.1 Destination Configuration Basics
89
3.3.2 Add-On-Specific Communication Setup
89
3.4 Security Configuration and Authentication
95
3.4.1 Identity Authentication Overview
95
3.4.2 Trust Configuration Steps
96
3.4.3 Certificate Management
97
3.5 Role Management and Authorizations
97
3.5.1 Role Collections, Users, and Group Management
98
3.5.2 Add-On-Specific Roles
99
3.5.3 Authorization Setup
102
3.6 Testing the Initial Setup
103
3.6.1 Validation Procedures
103
3.6.2 Common Setup Issues
104
3.7 Summary
107
4 Integration with Payment Service Providers
109
4.1 Understanding PSP Integration Architecture
109
4.1.1 Payment Gateway Fundamentals
109
4.1.2 API-Based Integration Patterns
114
4.1.3 PSP Adapter Framework
118
4.2 Setting Up PSP Accounts and API Credentials
122
4.2.1 PSP Account Creation
122
4.2.2 API Keys and Webhooks Overview
129
4.2.3 Test and Production Environments Setup
130
4.3 Configuring PSP Adapter in the Add-On
133
4.3.1 Adapter Installation
134
4.3.2 Configuration Parameters
136
4.3.3 Payment Method Setup
143
4.4 Payment Methods and Currency Configuration
145
4.4.1 Stripe Payment Methods Overview
145
4.4.2 Currency Support and Multimerchant Strategy
146
4.4.3 Level 2 and Level 3 Data Configuration
147
4.4.4 Mail Order/Telephone Order and Offline Mandates Support
147
4.4.5 Enable Specific Methods in the Add-On
148
4.5 Webhook Setup and Event Management
154
4.6 Testing PSP Integration
159
4.7 Summary
162
5 Implementation in SAP ERP
163
5.1 Prerequisites for SAP ERP
163
5.1.1 SAP ERP System Requirements
164
5.1.2 Add-On-Specific SAP Notes Implementation
168
5.2 Payment Card Configuration
206
5.2.1 Payment Card Master Data
207
5.2.2 Payment Card Type Configuration
209
5.3 Sales and Distribution Integration
222
5.3.1 Order Processing with Payment Cards
223
5.3.2 Credit Management Integration
240
5.3.3 Billing Document Processing
242
5.4 ABAP Development and Enhancements
243
5.4.1 User Exits
243
5.4.2 BAdI Framework
245
5.4.3 Add-On-Specific Developments
245
5.5 Authorization and Capture Process
251
5.6 Batch Jobs and Background Processing
253
5.7 Custom Reports and Interfaces
254
5.8 Summary
255
6 Implementation in SAP S/4HANA
257
6.1 Integration Activation in SAP S4HANA
257
6.1.1 Prerequisites and System Requirements
258
6.1.2 SAP Note Identification
258
6.1.3 SAP BTP Subscription and Service Key
260
6.1.4 Technical Integration Configuration for On-Premise Systems
261
6.2 Payment Method Configuration
272
6.2.1 Cross-Application Payment Card Type Configuration
272
6.2.2 Sales Payment Card Configuration
277
6.2.3 Finance Central Settings
288
6.2.4 Customer Master Payment Guarantee Procedure
289
6.2.5 Electronic Bank Statement Configuration for Payment Advice
290
6.2.6 Tax Configuration for PSP Fees
293
6.3 SAP Fiori Apps and User Interface
294
6.3.1 Master Data Management Apps
294
6.3.2 Manage Sales Orders App
299
6.3.3 Schedule Accounts Receivable Jobs App
300
6.3.4 Display Payment Card Data App
307
6.3.5 Exception Handling Apps
307
6.3.6 Refund and Reversal Processing Apps
308
6.4 Order-to-Cash Process Integration
309
6.4.1 Payment Card Registration
310
6.4.2 Sales Order Creation with Payment Authorization
310
6.4.3 Delivery Processing with Authorization Validation
313
6.4.4 Billing Document Creation and Financial Posting
314
6.4.5 Settlement Processing and Capture
315
6.4.6 Payment Advice Processing and Reconciliation
315
6.4.7 Exception Handling and Problem Resolution
316
6.4.8 Bank Statement Reconciliation
317
6.5 Cloud Versus On-Premise Considerations
318
6.5.1 Configuration Approach Differences
319
6.5.2 Feature Availability and Release Timing
320
6.5.3 Migration Scenarios and Upgrade Paths
320
6.5.4 Hybrid Deployment Strategies
321
6.6 Summary
321
7 Security and Compliance
323
7.1 PCI DSS Compliance Strategy
324
7.1.1 Understanding the PCI DSS Scope
324
7.1.2 PCI DSS Compliance Levels
325
7.1.3 SAP Self-Assessment Questionnaire Type
326
7.1.4 Compliance Strategy Framework
328
7.1.5 Compliance Responsibility Matrix
329
7.1.6 Annual Assessment Preparation
330
7.2 Tokenization Implementation
332
7.2.1 Architecture
332
7.2.2 Types and Format
333
7.2.3 Lifecycle States
334
7.2.4 Storage in SAP
334
7.2.5 API Workflow
335
7.2.6 Validation and Verification
335
7.2.7 Reuse and Multiuse Tokens
336
7.2.8 Expiration Handling
337
7.2.9 Deletion and Data Retention
337
7.2.10 Integration Patterns
338
7.3 Encryption and Key Management
339
7.3.1 Encryption in Transit
339
7.3.2 Cipher Suite Selection
341
7.3.3 Certificate Management
341
7.3.4 Encryption at Rest
341
7.3.5 Key Management for Encryption
342
7.4 Audit Logging and Monitoring
344
7.5 GDPR and Data Privacy
348
7.5.1 GDPR Principles for Payment Processing
348
7.5.2 Data Subject Rights in Payment Systems
349
7.5.3 Lawful Bases for Processing Payment Data
350
7.5.4 Cross-Border Data Transfers
351
7.5.5 Privacy by Design and Default
352
7.6 Security Testing and Validation
352
7.6.1 Security Testing Methodology
352
7.6.2 Vulnerability Scanning Requirements
353
7.6.3 Penetration Testing Procedures
354
7.6.4 Code Security Review
354
7.6.5 Security Testing During Development
355
7.6.6 Ongoing Validation and Continuous Monitoring
356
7.7 Summary
357
8 Testing and Troubleshooting
359
8.1 Test Strategy and Planning
359
8.2 Setting Up Test Environments
362
8.2.1 Postman Setup for API Testing
363
8.2.2 SAP ERP Test System Configuration
367
8.3 Test Scenarios and Scripts
368
8.3.1 Card Registration and Token Management
368
8.3.2 Authorization
371
8.3.3 Successful Settlement
376
8.3.4 Refund Test Scenarios
378
8.3.5 E-Commerce Integration
379
8.4 Performance Testing
383
8.5 Common Issues and Resolution
385
8.6 Log Analysis and Debugging
385
8.7 Summary
390
9 Go-Live and Administration
391
9.1 Go-Live Planning and Preparation
391
9.1.1 Deployment Approaches
392
9.1.2 Go-Live Readiness Assessment
393
9.2 Migration from Legacy Systems
400
9.3 Cutover Procedures
401
9.4 Post Go-Live Support
402
9.4.1 Hypercare Phase Structure
402
9.4.2 Knowledge Transfer and Documentation
404
9.5 Operational Monitoring
406
9.5.1 Application Log Monitoring
406
9.5.2 Batch Job Monitoring
407
9.5.3 Automated Performance Monitoring
408
9.6 Maintenance and Optimization
409
9.7 Summary
410
10 Processing Digital Payments
411
10.1 Customer Service Payment Operations
411
10.1.1 Processing Orders with Payment Cards
412
10.1.2 Handling Payment Failures
416
10.1.3 Managing Authorization Expiration in SAP ERP
418
10.1.4 Managing Authorization Expiration in SAP S/4HANA
419
10.1.5 Customer Payment Enquiries
419
10.2 Finance Operations
422
10.2.1 Refund and Credit Memo Processing
422
10.2.2 Dispute and Chargeback Management
429
10.2.3 Month-End Procedures
432
10.3 Training and Change Management
433
10.3.1 Role-Based Training
434
10.3.2 Best Practices for User Adoption
435
10.3.3 Common Challenges and Support Procedures
436
10.4 Summary
439
The Author
441
Index
443