SAP Access Control

Establish adequate monitoring and control procedures for your authorizations and automate your approval processes

Every authorizations concept, no matter how good, can be polluted over time. Without adequate change processes and regular monitoring procedures, the risk of pollution is very real. The complexity of SAP authorizations, with different authorization mechanisms depending on the system in your landscape, turns having adequate monitoring applications, controlled change procedures and automated approval flows into a necessity. Expertum can assist you in establishing a clear monitoring and control roadmap.


Over the years, Expertum has gained considerable expertise in translating these control and automation requirements into SAP Access Control implementations. Activating the risk analysis module, supported by an extensive Expertum ruleset, is usually the starting point. Implementing and automating the so-called firefighter accesses (actually we prefer the term extended accesses over emergency accesses) are regular alternatives to start your road towards GRC maturity.


Automating the approval processes for assigning authorizations to users, including embedded and preventive risk analyses and automated provisioning is where the real efficiency gain and control effectiveness starts kicking in. Linking these processes with HR-data (HRM, SuccessFactors) and having them triggered by hiring, change position and termination processes in HR further professionalises your authorizations processes.


Automating the approval processes for your roles and authorizations changes will get you yet another step further. All role changes need to be controlled in order to avoid unwanted access to creep in through all sorts of change requests. Adequate role and ruleset ownership are a must to achieve this.


Finally, your periodic review procedures need to be performed, as well. These usually very labour intensive processes can be largely automated as well, saving you a lot of time and avoiding human error in taking away accesses. User access reviews, SOD risk reviews and mitigating control reviews are all possible automations where we can assist you

How can we help you?

  • GRC Solution roadmap definition
  • Implementations
  • On-Premise or in the cloud
  • Upgrades & Additional Features
  • Integration with SAP Identity Management

Our Services


Roadmap & Strategy

We translate your business and IT requirements into new Innovative solutions, technologies and profound applicable architectures.

Consultancy & Implementation

We take the responsibility for the execution of a Program, subprojects, the change, co-ordination and budget. It's an end-to-end approach and contains the Implementation, Migration or upgrades.

Prototyping & PoV

Driven by our Vision, Innovation and Experience we develop unique prototypes for our customers to prove the value of a solution.

Cloud & 24x7 Support

Accelerate your Digital Transformation by using the Cloud based SAP solutions for Customer Engagement and Commerce, Analytics, IoT, UX and Big data. All managed by Expertum with our 24x7 technical support center.

Innovation is our drive!

With a focus on business, IT models and innovative emerging technology concepts within the SAP market, we make the difference. Find out more about our other unique expertise areas or services.