KEEP COMPLEXITY PER CAPITA EXPECTABLE
SAP Basis range of services
Without this provisioning component, adjustments to employee permissions in the respective IT resources would have to be implemented by the relevant system administrators. However, manual provisioning processes are by their very nature a source of errors. If an employee's tasks change, the system administrator should consider all active user accounts when modifying and deleting accounts. A modern IDM system therefore helps companies to keep track of users and their permissions, especially in complex and heterogeneous system landscapes.
SAP Basis is structured as a classic three-tier model. It contains the following components:
In addition to project-based training, we offer individually prepared training courses on the following topics:
Then go back to the Permissions tab to generate the current profile of the permission objects. Once you have completed these steps and secured the role, it has the necessary Fiori permissions to launch the OData service-related application.
Automation of processes In an IDM, IT business processes, creating, modifying and deleting a user are defined centrally by means of a unique set of rules. All the necessary steps are then completed using automated workflows. User administration no longer has to be administered separately for each system, but only in a single point of administration. Data Consistency Employee data is created only once in a leading system in an IDM architecture. All attached systems use this data in their user management on demand. In a change of department or a new activity, permissions are automatically adjusted. Security and Documentation In a centralised user administration, users can be locked down efficiently on all systems or access rights can be changed. The connection to the personnel process automatically initiates the change process as soon as the master record is adjusted in the Human Resources Department. Documentation solutions can also be used to archive all processes without any gaps. This creates transparency which also facilitates the detection of a functioning and secure authorisation concept during audit tests. Requirements for IDM systems People get electronic identity attributes describe the role of the person Quality requirements Reliability: Abuse prevention Readability: Documentation and logging Failover: Back-up systems in compliance with legal requirements Data Protection Act What should be taken into account in application processes? When implementing an IDM and also in the day-to-day operation of an IDM, there are certain things that should be taken into account when applying. I have summarised the most important points in the form of a checklist.
Tools such as "Shortcut for SAP Systems" are extremely useful in basic administration.
Checks whether the queue is fully processed.
Some useful tips about SAP basis can be found on www.sap-corner.de.
Remove weak password hashes from the system: Only updating the profile parameter does not provide you with the necessary security.