Project of Authorization Reorganization

Reading time: 2 min.
Tomasz Jurgielewicz

In a previous article, we wrote about authorization audit using SAST tools.
Such an audit, if it brings alarming results in the area of SAP security (read: the audit report clearly shows that as an organization, we need changes in the field of better management of users and authorizations in the organization) often leads to a discussion on current authorization management processes.

Such discussions are often a great way to start a project.
It is worth noting that in the case of reorganization of authorizations can also be used as "creeping project", i.e. we repair and seal the system step by step.  This is a good option when we have little human resources, time and money for a large reorganization project.

Reorganization of authorizations project - where to start from?

Customers are usually afraid of a grand undertaking and turning the authorization world upside down, and thus the world of everyday business. Often such a world is governed by its own rules, roles are full, contain hundreds of unused transactions or S_TCODE are filled,
oh gosh, * !
However, the reorganization model   comes more and more attractive, where tidying up is done gradually, department by department, the time for meetings is outside the hot periods in the company. The milestones are not great and rapid, but they are being implemented gradually, contributing to the increase of authorization awareness in all departments.

Okay, so how do we do the project?

It verifies the current situation and is an argument for starting the reorganization of powers. SAST analyzes, among others, used transactions and generates reports that must be analyzed by the project sponsor, its advisors and the project team.
The project team must include persons performing the role of permissions administrator.

Defining project risks in the enterprise

A standard for every project, not only authorization.
Each organization will have different risks. Maybe the lack of Key-users? Maybe lack of authorization team?
Maybe a misunderstanding of the importance of the SAP authorization area?

Project plan
We divide the project into the most important phases during which appropriate actions must take place
in no accidental order.

Authorizations Concept
A document that describes a complete authorization and user management model in SAP
in organisation. The most important thing: it is not created once during SAP implementation and forgotten about.
It is a "living" document, it is updated on an ongoing basis by the authorization team each time permissions are modified. At the client's request, we provide our Authorizations Concept template during the project.

 Good practices

  • Project managerdoes not have to be a specialist in the field of SAP authorization. However, he cannot underestimate the importance of properly reorganizing SAP authorizations and managing authorization documentation.
  • Responsibility, responsibility and more responsibility.
    As in any project - you need to find (and encourage if required) people responsible for your own garden or garden bed. Where the responsibility is collective and an undefined group of employees can intervene in the authorization model on the system without applying the Authorization Concept, there no project will help. Unfortunately.

Are you ready for the project?  We will help you make some cleaning in ours authorizations!

Author: Bernadeta Szwarc



Zapoznaj się z naszym e-bookiem dotyczącym migracji z SAP ERP na SAP S/4 HANA
Pobierz darmowego e-booka

If you find this article valuable, please share it.
This will allow us to reach new people. Thank you in advance!

We will take care of the digital transformation of your business

Do you want to protect your business against cyber attacks? Or maybe you are planning a digital transformation or looking for IT specialists for a project? We are happy to help. We are here for you. Let's talk about professional IT services for your company.
Contact Us
Darmowy e-book

Wszystko, co musisz wiedzieć
o migracji z SAP ERP na SAP S/4HANA

Nasz zespół ekspertów przygotował dla Ciebie
e-poradnik, dzięki któremu zrobisz to łatwo, bezboleśnie i bez szkody dla bezpieczeństwa
Twojej firmy.

To praktyczna wiedza podana w przystępnym
języku - zupełnie za darmo.
Pobierz darmowego e-booka
+ 48 508 400 203
Address Information
ul. Tęczowa 3 , 60-275 Poznań
NIP: 5213683072
REGON: 360098885
Visit our Social Media:
Address Information
ul. Tęczowa 3 , 60-275 Poznań
NIP: 5213683072
REGON: 360098885
Visit our Social Media:
Lukardi 2022. All Rights Reserved. 
Made with