7 Standard SAP Reports for Audit Information

  • by Anurag Barua, Independent SAP Advisor
  • January 15, 2008
Many SAP users think that only third-party tools can carry out a security audit of your SAP system. If you know where to look in your SAP system, you can find some hidden gems that provide you with information that auditors want. See seven standard reports that you can use to better prepare for your audit.

In your standard SAP system, you can find multiple reports that provide you with information that forms the crux of a lot of audits. In fact, these reports have been available since early SAP releases. These reports belong to the User Information System available in a standard SAP system from its area menu, which you can invoke by running transaction SUIM. Your security team needs to run these reports on a regular basis if it’s not doing so already as part of its standard SAP system operating procedures and policies. When you engage an external company to perform a security audit and to assess the degree of compliance your organization has achieved from a Sarbanes-Oxley standpoint or otherwise, it probably runs these very same reports.

Although you can save some money by doing your homework regularly, you can save yourself a lot more in terms of embarrassment when a security audit unearths holes that you could otherwise plug by looking at the innate capabilities in your standard SAP system, understanding their usage, and using them.

I’ll discuss seven reports that you can (and should) use in preparation for your audits. Although the screenprints that I use are from an SAP NetWeaver system, the concepts are release independent.

Anurag Barua

Anurag Barua is an independent SAP advisor. He has 23 years of experience in conceiving, designing, managing, and implementing complex software solutions, including more than 17 years of experience with SAP applications. He has been associated with several SAP implementations in various capacities. His core SAP competencies include FI and Controlling FI/CO, logistics, SAP BW, SAP BusinessObjects, Enterprise Performance Management, SAP Solution Manager, Governance, Risk, and Compliance (GRC), and project management. He is a frequent speaker at SAPinsider conferences and contributes to several publications. He holds a BS in computer science and an MBA in finance. He is a PMI-certified PMP, a Certified Scrum Master (CSM), and is ITIL V3F certified.

See more by this author


No comments have been submitted on this article. 

Please log in to post a comment.

To learn more about subscription access to premium content, click here.