TrustRadius Insights for SAP Access Control are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.
Pros
Automation and Integration: Users have expressed high satisfaction with the automation and integration features of the workflow-based provisioning process. Specifically, they find the HR trigger automation and integration with HR systems to be extremely beneficial for streamlining access management tasks efficiently.
Efficient Risk Analysis: Many reviewers have highlighted the product's impressive capability to conduct thorough risk analysis of Segregation of Duties risks within workflows. This functionality significantly enhances the system's efficiency and reliability, providing users with valuable insights to mitigate potential security threats effectively.
Role Management and Access Control: Users value the automatic role management of users integrated into the product. The enterprise-wide risk analysis offered by the system ensures robust access provisioning processes, enhancing overall access controls within organizations.
Loading Reviews List....
SAP Access Control Reviews
7 Reviews
ManufacturingAutomotive2Food & Beverages1Machinery1Mechanical Or Industrial Engineering1Sporting Goods1Biotechnology1
Search is temporarily unavailable. Filters are still applied.
We use if for general access management, privileged access management and access risk analysis. SAP Access Control helps us to ensure that no accesses are provisioned without the due approvals and prevents/identifies which SoD risks are currently assigned to users. Regardind Privileged Access Management, we use it to have detailed reports about usage details.
Pros
Access Provisioning
Access Risk Analysis
Privileged Access Management
Cons
Movers/Leavers management
Approvers/Owners review
Access Management for SAP Cloud solutions without additional middlewares
Access management for non-SAP solutions
Likelihood to Recommend
SAP Access Control is the best solution to manage access on SAP on-premise systems. It needs to evolve when it comes to SAP Cloud and non-SAP applications
We use SAP Access Control for automatic user provisioning and ensure access to terminated employees is no longer available. We have it integrated with Service now to reduce the manual effort for the creation of users and also to prevent fraudulent access to SAP applications integrated via SAP Access control.
Pros
Provisioning user access
Automatic role management of users
Analyze enterprise-wide risk
Cons
Integration with third parties
Composite role risk assessment
Better interface for fire fighter access provisioning
Likelihood to Recommend
It is an extremely useful product when you have a tight-knit landscape integrated with SAP. It is also very helpful to reduce the manual effort of user provisioning when the GRC system is integrated with several SAP applications like S/4 and HANA. It is not really helpful in scenarios where multiple ERP systems are involved.
I use SAP Access Control for solving the user creation and termination process, which helps the service desk team. They can spend more time on solving other user security issues than on user termination and the onboarding process. Access control is currently being used for User Access Recertification as well.
Pros
Onboarding users
Terminating users
Additional access
Cons
More integration with AD
Likelihood to Recommend
Managing approval workflows for getting approvals from managers, and role owners and avoiding the manual process of emailing them and asking them for approvals. SAP Access Control is easy to set up with no code development.
We use SAP Access Control across the whole organization. It makes user management simple and cost effective. Role management, user management, risk analysis and workflow management are very simple. It can be integrated with IDM and SAP NetWeaver for more cost-effective user management. You can manage business roles and emergency access management easily with SAP Access Control. BRFplus and MSMP functionality make user request/role assignment request approval easier and more convenient.
Pros
ARA: Access Risk Analysis with global and customized rule set.
Emergency access management with well-organized reason code facility for audit.
Cons
Role development is not that convenient.
Initial configuration more complicated.
Likelihood to Recommend
If your organization has 5 or 10 SAP systems then it would be better to use centralize SAP AC/GRC to manage everything together. With a one-time effort all systems can be managed. SAP AC can be connected to HR and Active Directory to pull user data automatically instead of creating everything manually. For end-user usages this tool is more user friendly also. You can also use other add-on services like Process Control and Global Trade Services. The newer version AC 12 tool can be well integrated with S/4HANA for complete access control management.
VU
Verified User
Professional in Information Technology (10,001+ employees)
SAP access control is being used in our organization to manage user access and mitigate related risks.
Pros
Data access certification
Automation of user access
Emergency access monitoring
Cons
The learning curve can be a bit steep
Likelihood to Recommend
SAP Access Control is great for organizations that have a large number of users requiring varying levels of access. It is less appropriate for very small companies with few users.
VU
Verified User
Analyst in Finance and Accounting (10,001+ employees)
We are using SAP Access Control on a company with about 800 users. The main problem to solve is to assign privileges to users according to their job function, keeping the segregation of duties well managed. The aim is to cover all the organization operations in five countries. The business problem SAP Access Control deals with is fraud due to excessive access privilege. When you look at about 2000 transactions available on SAP, to select the right ones to every employee is a daunting task. Those transactions you select for every employee get registered on SAP Access Control and this allows the required monitoring to keep from changes on the original design. The changes can occur accidentally or intentionally, either way, they are controlled through SAP Access Control.
Pros
Segregation of duties is the first thing. SAP Access Control allows to declare couple of transactions that can not be assigned together because they represent an action and an authorization for the action. Using these Segregation of Duties rules allows SAP Access Control to report on users that do not comply with a given rule.
Workflow for access management is second. The provision of new users, new roles or the changes made to roles can be streamlined on the application. This allows the implementation of effective and efficient procedures to meet all access requests.
Monitoring on super user activities. Using SAP Access Control, we can remove to IT personnel all the super user privileges. If the occasion arises and someone for the IT department requires super user privileges to solve or troubleshoot a problem, a special role is assigned temporally to him. SAP Access Control keeps a log of the activities performed during the time the IT user works with the in the temporary role, allowing complete monitoring on super user activities.
Cons
SAP products in general are not user friendly. SAP Access Control is no exception to this. Even though the use of the Netweaver interface is a big improvement on user interaction, the presentation of big amounts of data could be improved (list of roles, information of values assigned to authorization object fields, and the like).
Regarding functionality on Access Control, the product is about complete; I cannot think of anything else to add to it.
Likelihood to Recommend
SAP Access Control is suitable for organizations with more than 100 users. At this user amount it begins to get difficult to keep track of the roles assigned to every user and the satisfaction of segregation of duties rules on every role assigned. If the number of users extends the hundreds, the cost of assurance of the right privileges assigned to every user rises exponentially. Failure to implement a solution like SAP Access Control in an organization will result in the execution of fraud cases. If a company is not managing access privileges with a tool like SAP Access Control, I suggest keeping a record of loss events related to excessive privileges. This record will justify investment in the product.
We are using it for our user provisioning process, where a user needs required access and gets converted to a GRC request and a workflow gets triggered. This workflow will pass on to different stages of approval before auto provisioning of approved roles. The workflow also nicely integrates with segregation of duties rule set and flags SoD right away.
Pros
GRC tool has the all required modules like SOD, and CUP workflows.
Most of workflows are pre-delivered so it's super easy to implement.
Can also perform UAR and SOD reviews.
Cons
The tools still have many bugs in sync jobs and we need to apply SNOTES to fix the issue.. sometime that creates another issue in the system.
Firefighter log collection program has bugs.
Likelihood to Recommend
This tool works brilliantly for user access provisioning, simulating risks for roles or users and running ad-hoc reports. The Firefighter module works great where we provide elevated access to IT users but the Firefighter log collection job has few areas for improvements. Also integration with other non SAP products is not smooth.
VU
Verified User
Administrator in Corporate (5001-10,000 employees)