Authorizations In Sap Software Design And Configuration

Authorizations in SAP Software: Design and Configuration

This book gives you a practical and comprehensive introduction to the design and management of authorizations in SAP. You'll learn how to develop a meaningful authorization concept that meets statutory requirements and is tailored to your business processes. And you'll learn how those processes are implemented as authorizations in your SAP system. In addition you'll gain insight into which tools and functions of the change management process in SAP play a role in designing and implementing an authorizations concept, and learn about SAP NetWeaver IdM, CUA, SAP BusinessObjects Access Control, and the UME. Finally, you'll discover how to implement an authorizations concept in various other SAP applications and components (SAP ERP, HCM, CRM, SRM, and BW). 1. Organizational Permissions Learn how to develop a systematic differentiation of roles and permissions in SAP ERP. You'll also learn how to assign roles for the organizational management of SAP ERP HCM. 2. Legal Frameworks Discover the legal and regulatory scenarios (i.e., accounting law and data governance) that are relevant to your business, and how they fit into the authorization concept. 3. SAP Tools for Change Management Master the essential tools for authorizations management, including the Role Manager, CUA, SAP BusinessObjects Access Control, SAP NetWeaver IdM, UME, and more. 4. Technical Basics and Customizing Learn which features are relevant to user maintenance and the basic settings necessary for a meaningful functional separation. 5. Authorizations in SAP Systems Gain an in-depth understanding of the core processes of SAP ERP, as well as the specific requirements of SAP ERP HCM, SAP CRM, SAP SRM and SAP NetWeaver. Highlights: Organization and permissions Legal framework Technical principles of the change management process System preferences and customizing Role assignment via Organizational Management Role Manager Central User Administration (CUA) SAP NetWeaver Identity Management (IdM) SAP BusinessObjects Access Control User Management Engine (UME) Authorizations in HCM, CRM, SRM, and BW Permissions in Financial Accounting Logistics and administration

Authorizations in SAP Software

Auditing and GRC Automation in SAP

Over the last few years, financial statement scandals, cases of fraud and corruption, data protection violations, and other legal violations have led to numerous liability cases, damages claims, and losses of reputation. As a reaction to these developments, several regulations have been issued: Corporate Governance, the Sarbanes-Oxley Act, IFRS, Basel II and III, Solvency II and BilMoG, to name just a few. In this book, compliance is understood as the process, mapped not only in an internal control system, that is intended to guarantee conformity with legal requirements but also with internal policies and enterprise objectives (in particular, efficiency and profitability). The current literature primarily confines itself to mapping controls in SAP ERP and auditing SAP systems. Maxim Chuprunov not only addresses this subject but extends the aim of internal controls from legal compliance to include efficiency and profitability and then well beyond, because a basic understanding of the processes involved in IT-supported compliance management processes are not delivered along with the software. Starting with the requirements for compliance (Part I), he not only answers compliance-relevant questions in the form of an audit guide for an SAP ERP system and in the form of risks and control descriptions (Part II), but also shows how to automate the compliance management process based on SAP GRC (Part III). He thus addresses the current need for solutions for implementing an integrated GRC system in an organization, especially focusing on the continuous control monitoring topics. Maxim Chuprunov mainly targets compliance experts, auditors, SAP project managers and consultants responsible for GRC products as readers for his book. They will find indispensable information for their daily work from the first to the last page. In addition, MBA, management information system students as well as senior managers like CIOs and CFOs will find a wealth of valuable information on compliance in the SAP ERP environment, on GRC in general and its implementation in particular.