In this session, we will apply the topic of Behavior Driven Governance to the target system SAP ABAP (ERP, S/4HANA, HCM, CRM, ...).
We will no longer only look at whether a user has used the SAP ABAP application in general but at the actual use of transaction codes. A user can have many authorizations assigned in an SAP system. To reduce the risk, we take the transaction usage data (ST03N) as a basis and see if the user has executed transactions that he has access to via the assigned ABAP roles. If no transactions of an assigned role are not used in a certain period, the attestor can reject the assignment of the ABAP role and this assignment will be automatically removed from the user. This streamlines the number of rights assigned and reduces risk.
Speakers:
- Abdullah Ahmad - Senior Solutions Architect | One Identity
- Cengiz Tuztas - EMEA Presales Manager | One Identity