Reveal your SAP Authorization weaknesses!
With the CSI Authorization Auditor® you make the SAP authorizations transparent. The application is designed, developed and supported by Certified SAP NetWeaver Security consultants.
Functionality
CSI Authorization Auditor® is the SAP audit tool that helps evaluating on the authorization setup. It not only easily reveals weaknesses in your authorization concept but it also helps identifying undesired authorizations, accumulation of access rights, unsecured back doors and cross-system segregation of duties.
CSI Authorization Auditor® can also be used to monitor your SAP authorizations fully automated, taking your normative information into account. This is the way to be fully compliant with regulations like the Sarbanes-Oxley Act.
CSI Authorization Auditor® in combination with the CSI Authorization Organizer ® allows you even to simulate the impact of changes to user-ids, composite roles and / or single roles.
Features
CSI Authorization Auditor® provides an important number of features, such as: * Your analysis is done on your PC, without disturbing the SAP system under review and without needing access to the respective SAP system(s). It freezes the situation under review and allows you to reproduce and prove the results; * The tool is SAP release independent and your query criteria can be applied to all SAP systems to be reviewed, including BW, SEM, CRM, APO ; * The interactive screen output of queries enables you to quickly find the source or cause of unexpected access rights; * The output of queries can be presented to all stakeholders in an easy to understand freeware application; * Process auditing: spreadsheets that give an overview of who can do what in the business process; * The tool enables a fully automated check on (cross-system) segregation of duties according to pre-defined, fine tuneable criteria; Both detailed and statistical reports are available as well.
