Combine SAP NetWeaver Identity Management and SAP Access Control to Automate Management of IT and ERP Access and Identity

  • by Swetta Singh, Director of Solution Management, Governance, Risk and Compliance, SAP Labs
  • Chris Radkowski, Director of Solution Management, Governance, Risk and Compliance, SAP Labs
  • Keith Grayson, Business Development Manager, EMEA, SAP
  • May 16, 2013
Learn about options for combining SAP Access Control and SAP NetWeaver Identity Management to support automation of identity and access processes and compliance requirements within your organization.
Key Concept
An integrated software solution that combines SAP NetWeaver Identity Management and SAP Access Control enables you to automate access governance and identity management capabilities to support automation of identity and access processes and compliance requirements. SAP Access Control is based on ABAP technology and integrates with the native SAP ERP, Oracle, PeopleSoft, and JDE interfaces to support access governance capabilities. These capabilities include features such as administration of the access request process and approval process with integrated segregation of duties (SoD) analysis. SAP NetWeaver Identity Management is based on Java technology and is designed to support administration of user identities, user provisioning, and single sign-on (SSO) across IT systems and applications.

SAP Access Control provides highly specialized functionality required to administer access and manage accounts to meet requirements for financial regulations and company policies. SAP NetWeaver Identity Management (SAP NetWeaver ID Management) provides features designed to automate identity administration across multiple systems. When SAP NetWeaver ID Management is integrated with SAP Access Control, segregation of duties (SoD) analysis capabilities can be integrated with the approval processes within an identity management system to ensure that role assignments are compliant with financial regulations. Figure 1 outlines the features of SAP Access Control and SAP NetWeaver ID Management.


Figure 1
Features of SAP NetWeaver ID Management and SAP Access Control

SAP Netweaver ID Management

SAP NetWeaver ID Management provides a comprehensive solution for managing user accounts and privileges across enterprise landscapes. Enterprise landscapes include a variety of applications and systems such as Microsoft Active Directory, Microsoft Exchange, SAP Business Suite, and custom applications. SAP NetWeaver ID Management can integrate with these systems to support identity management and provisioning through a combination of out-of-the-box connectors, standards-based integration, connectors provided by partners, and connectors custom developed using SAP NetWeaver ID Management’s published connector application programming interface (API).

SAP NetWeaver ID Management supports the functionality to manage the user life cycle from initial onboarding, change, and termination. SAP NetWeaver ID Management includes an integrated workflow engine, extended role-based access control, and an integrated identity store built on virtual directory technology, the authoritative source for user identity data. SAP NetWeaver ID Management provides password synchronization functionality, allowing users to change their passwords on a number of source systems and have those passwords synchronized across all their different accounts. Comprehensive reporting of activities relating to the mappings of users, roles, and privileges are provided through SAP NetWeaver Business Warehouse.

Swetta Singh

Swetta Singh is director of solution management, governance, risk and compliance at SAP Labs with over 13 years’ experience in IT industry focused on corporate governance, enterprise risk management and corporate compliance helping solve customer problems.

See more by this author

Chris Radkowski

Chris Radkowski is director of solution management, governance, risk and compliance at SAP Labs with extensive experience in identity, access control, and security technologies. Chris is a frequent speaker at SAP events and driving several strategies for access control, compliance, and analytics.

See more by this author

Keith Grayson

Keith Grayson is a business development manager, EMEA at SAP with over 20 years’ experience in the IT industry. He is passionate about creating, articulating and realizing real business value with technology. Keith has a deep background in all aspects of IT security and particularly with identity and access management. He speaks about SAP’s Identity Management and GRC approach and strategy at analyst and industry events, particularly relating to articulating IT risk effectively in the context of overall corporate risk.

See more by this author


Comments

No comments have been submitted on this article. 


Please log in to post a comment.

To learn more about subscription access to premium content, click here.