Organizations often struggle to cover all authorizations requirements (e.g. role provisioning and validation, compliance, derived roles, different systems) efficiently. SUIM's AM allows you to achieve exponential time savings when managing and provisioning permissions in sophisticated IT environments. Users can request and obtain additional authorizations in just a few clicks, via an approval workflow or automatically - according to your rules, on premise or in the Cloud. AM ensures your users have the access they need to do their job on any system - securely and efficiently.
Efficiency
Flexibility
Simplicity
Authorizations related entitites
Identity related entitites
Integration with 3rd parties products
Integration in other SUIM products
Provisioning of authorizations using an authorization matrix is the central tool for managing authorizations request:
- Simple assignment of authorizations via checkbox as well as time-dependency rules
- Action Log of all assignments to satellite systems
- Plan/actual comparison of the assigned permissions in the target systems
- Simulation mode to see the effects of changes on risks and permission
The authorization request self-service enables users to independently request permissions for specific actions or access within the whole system landscape/organization. Users initiate the process, submit their requests, and await automated approval or denial (four-eye-principle / workflow), streamlining the authorization process and reducing administrative burden.
The generation of SAP derived roles based on Master roles and organizational set-values automates access control. By considering user attributes, such as company or division, roles held and organizational data, it dynamically creates tailored roles and permissions. This process optimizes security, enhances compliance, and simplifies user management, ensuring individuals have accurate access rights within SAP systems or BI profiles. No manual change is necessary.
A business role in AM is a combination of various authorization-elements (SAP roles, BI, structural authorization, organization management objects, Active directory, SAP HANA permissions, SAC Teams, SF permission groups etc.). This reduces the complexity in the role to user assignment (one AM-Role instead of X number of single authorizations) and grant access to multiple system types with one click.
Automatic assignment of roles based on user attributes streamlines access control. By leveraging attributes like job title, department, or project involvement, the system dynamically assigns appropriate roles, privileges, and permissions. This efficient process ensures users have the necessary access for their tasks while maintaining security and reducing administrative overhead.
Discover SAP services and solutions tailored to your business needs.
