Authorizations aren't easy, but this book is here to help. Learn how to develop a meaningful authorization concept that meets statutory requirements and is tailored to your business processes. Explore the SAP tools and functions that play a role in designing and implementing an authorizations concept. In addition to discussions of SAP IdM, CUA, SAP Access Control, and the UME, you ll learn about authorizations across the entire SAP landscape (SAP ERP, HCM, CRM, SRM, and BW).
* Explains the business, organizational, and legal framework requirements for authorizations
* Provides an overview of the technical fundamentals and customization of authorizations in SAP
* Includes chapters on authorizations in web UIs and SAP Access Control
Organizational Permissions
Learn how to develop a systematic differentiation of roles and permissions in SAP ERP. You ll also learn how to assign roles for the organizational management of SAP ERP HCM.
Legal Frameworks
Discover the legal and regulatory scenarios (i.e., accounting law and data governance) that are relevant to your business, and how they fit into the authorization concept.
SAP Tools for Change Management
Master the essential tools for authorizations management, including the Role Manager, CUA, SAP Access Control, SAP Net-Weaver IdM, UME, and more.
Technical Basics and Customizing
Learn which features are relevant to user maintenance and the basic settings necessary for a meaningful functional separation.
Authorizations in SAP Systems
Gain an in-depth understanding of the core processes of SAP ERP, as well as the specific requirements of SAP ERP HCM, SAP CRM, SAP SRM, and SAP NetWeaver.
* Organization and permissions
* Legal framework
* System preferences and customizing
* Role assignment via Organizational Manager
* Role Manager
* Central User Administration (CUA)
* SAP NetWeaver Identity Management (IdM)
* SAP Access Control
* User Management Engine (UME)
* Authorizations in HCM, CRM, SRM, and BW
* Permissions in Financial Accounting
Volker Lehnert has worked at SAP for eight years. He has worked for SAP (Switzerland) AG since 2008, where he is a consultant on all topics concerning the authorization system, and continuously returns the authorization system to its core questions: business functions, organizational concepts, and legal requirements. Within this scope, his consulting work focuses on authorization concepts, SAP BusinessObjects Access Control, and the processes of User Life Cycle Management. Furthermore, Volker Lehnert is co-author of the data privacy guideline of the German-speaking SAP User Group (DSAG).
Larry Justice is a Platinum Security and GRC AC consultant with a basis systems background and over fourteen years of SAP security / compliance experience. He has been the Global Leader for the SAP Risk Management and IT Security Focus Group, as well as a contributing speaker at TECHED and ASUG functions, for thirteen years. He is currently working in the areas of SOX compliance, user access, risk management, security strategy development, security assessment, SSO, LDAP and other SAP Enterprise Portal technical areas, and other related issues for SAP on a global basis.
