As a response to increased customer demands on SAP^® security and on easing the maintenance on the authorizations and the access rights, axl & trax has extended its portfolio to the development of solution with SAP^® ABAP.

Solutions are various and are designed to best achieve specific customer needs like:

• Provide workflow capabilities on the user assignment process
• Allowed the IDM company tooling to communicate with the CSI^® application
• Improve the security response to the power user access rights needs
• Develop additional security check within program
• Develop tracing capabilities to business functionalities
• Program to mass maintained organizational changes within the role concept
• …

Balancing IT/support intervention needs and safeguarding company assets has become a tough situation in today’s ERP systems. In one hand IT team (power user, support team, Key user, process owners…) should suffer no delay in getting access to various authorizations and in the other hand their authorization should be restricted on a need-to-have & need-to-know basis with proper logging set-up to ensure traceability of action taken.

To tackle this number one audit and organizational issue and avoid power users to have power access rights on a daily basis, axl & trax has developed in close cooperation with its customers an ABAP tool allowing automated emergency response to broader access rights delivery without human intervention but still with full traceability.

The emergency ABAP procedure consists out of 4 steps:

1. allowing the power users to request an emergency session
2. generating a password for the emergency user to logon with
3. start the security audit log to ensure logging of emergency user activities
4. email report to the emergency user owner with notification of usage and log information.