SAP Support Restrictions
I have a challenge in the remediation phase of my current rebuild of RAR rule set. I have joined the company and tasked to provision access in a controlled fashion to the SAP support team. Here I have found that there are no depths in the support model and the people on the 1st line support and 3rd line support are not far attached from access rights requirements. We have created posting custom rules as the first part of the project and removed these accesses from them, leaving them with the non posting access on their normal ID and all the rest within their module on their fire fighter. We have only shifted the risk to fire fighter but I donu2019t believe we have accomplished anything. I want to put a controlled support framework in place that does not misuse SPM. How do you restrict access on SAP Support areas in your company?