cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Why use SAP Identity Managment?

Go to solution
former_member331912
Participant

on ‎03-11-2016 9:48 AM

0 Kudos

I admit this is a generic question, but I need some input from people on this forum.

In my organization, currently we are using a .NET application which automates:

New SAP user application

Job role request/User authorization Management

User license Management

Job role transaction management

I starting looking for a standard solution in place of this, and came across SAP IDM.

Does SAP IDM serve the above purpose?

Any kind of guidance would be useful.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎03-11-2016 2:12 PM
0 Kudos

Hi Ather,

With SAP Identity Management you can automate the whole business process starting from the HR system - e.g. SAP HCM or SuccessFactors. Based on user roles or given attributes in HR when a new employee is hired, IDM can automatically create account in Active Directory, Outlook, portal and other systems and assign respective roles and permissions and the user can be productive in few minutes. You can even assing a starting date in the future and the user will be activate on the starting date.

In the same manner users can be automatically de-provisioned when they leave the company. And this is important from security point of view.

Another importanat point from audit and compliance viewpoint is when users change positions. Then IDM can be integrated with Acccess Control and check for Segregation of Duties violation.

There are different self-service capabilities - like pasword reset, access request, manage some of the personal data - all that makes the life of IT easier.

SAP IDM has flexible graphically designed workflows.

You can create and modify user UIs without the need of development skills and redeployment.

Role management and support of unlimited levels of hierarchy of roles

You have configurable logs according to your auditing needs

Various options for reporting

You have notifications to users, managers, built in approval and attestation workflows and the list goes on.

You can contact me for further details

Best wishes,

Fedya Toslev

Show replies
Show replies
Ckumar
Contributor
‎03-11-2016 9:14 PM
0 Kudos

Nicely explained Fedya...
I am sure this is going to help many people who are still puzzled why to use SAP IDM.

Answers (2)

Answers (2)

former_member331912
Participant
‎03-14-2016 10:33 AM
0 Kudos

Thank you for you response.

Matt: It is an application developed internally

To all: In our current scenario, once the user applies for a job role/Process, a notification is sent to the respective functional Analyst. For example, if a user applies for FI job role, application is sent to FI Analyst, who will first approve this application. Only after that, the application will be sent to the User's Line Manager, who will finally approve the application.

My question is, in IDM, can we have this multi- level approval hiearchy?

Regards

Show replies
Show replies
Former Member
‎03-14-2016 11:45 AM
0 Kudos

Hi Ather,

yes, you can have multiple approvers. you can see more about the approval process here:

Approval Processing - SAP Identity Management Configuration Guide - SAP Library

Best wishes,

Fedya

former_member2987
Active Contributor
‎03-14-2016 2:39 PM
0 Kudos

Hi Ather,

As Fedya mentioned, this is possible and frequently done with IDM.

I would suggest that you work on developing a list of requirements and then potentially engaging with a consulting firm that specializes in IDM work to help confirm your requirements and conduct a Proof of Concept to help validate everything.

A quick look at the People tab of the IDM space can give you an idea of who can help.

If course, SAP can also assist with this.

Regards,

Matt

former_member2987
Active Contributor
‎03-11-2016 2:50 PM
0 Kudos

Hi Ather,


I think the other thing that needs to be considered is that you don't mention if your current application is a commerical one or something developed internally. 


SAP has put a lot of effort into creating an Identity Management Solution that works for the SAP Landscape and the Enterprise in general. I've noticed in my years of consulting that internal applications can be great at handling tactical customized needs of an organization, but seldom consider the strategic security and compliance needs that are affecting companies and organizations of all sizes every day.


Hope this helps,

Matt

Show replies
Show replies
Ask a Question