smartAccess
Elevated access control for admins and system consultants
smartAccess - excessive user authorizations under control
smartAccess enables administrators and system consultants to access the SAP system in random situations (breakdown, business request, change), while managing the associated system access risks. Its built-in control mechanisms ensure compliance with audit requirements, facilitating seamless maintenance work on the system.
When is it worth it?
- Frequent need of work in IT (SAP) systems with excessive user authorizations
- Many IT projects and business requests regarding support and system changes
- Multiple systems to operate, many administrators and consultants
- Recurring recommendations to control the auditing process better / more attentively
What the process may look like - ready solution
Summary - why is it worth using?
smartAccess offers full flexibility required to carry out maintenance work and includes mechanisms of risk control needed in situations when excessive access is granted.
Main functionalities of smartAccess:
- Tool supports the process of excessive access management - compliance with auditing standards and guidelines
- Ready build-in workflows supporting the process of submitting, approving, and reviewing actions with excessive access
- Control mechanisms built into the process - impossible to approve the logs of one's own session (four-eyes principle)
- Access to data regarding the session's started transactions, programs, and changes in business objects
- Access to data regarding booked financial and warehousing documents
smartAccess screen gallery
References
FAQ – find out more about smartAccess
The smartGRC application is a separate stand-alone system, which can be installed in your personal environment or made available from the cloud. Installation of the system requires preparing an application server (Windows) and a database server (SQL).
The smartGRC application connects through a SAP interface dedicated to JAVA systems – a JCo connection. Standard SAP programs are used to download data from the SAP system, launched for reading data with parameters set by smartGRC.
3-4 weeks, assuming a standard process and no more than 10 administrators and consultants accounts for 2-3 SAP systems. A greater number of accounts or SAP systems generates additional complexity in the implementation process (configuration, training, and transition of knowledge), which grows with the number of stakeholders and operated SAP systems. However, the duration of more complex projects does not exceed 3 months.
The product has a wider spectrum of reported information realized during special / emergency sessions than its market alternatives, such as creating financial or storage documents, and a detailed documentation of changes, among others. such as creating financial or storage documents, and a detailed documentation of changes, among others. It has built-in safeguards for when an administrator attempts to start an emergency session bypassing smartAccess (usage is reported). It is intuitive in use, based on the familiar environment of a web browser.
Yes, it can support any given system, including ones not based on ABAP technology, but in such a case it is necessary to prepare a dedicated connector, which may extend the implementation and installation process. Currently the system includes connectors to: Active Directory, Remedy, and Service desk.
I want to see how smartAccess works
Fill out the form below and we will contact you with a presentation of our offer and the capabilities of the module.
- emergency access
- SAP security
- firefighter