Skip to Content
author's profile photo Former Member
Former Member

User Community access to SUIM

Hi,

I’m new to SAP security, but I’ve worked with SAP for a number of years. A user is requesting SUIM access because she needs to review her roles bi-annually for SOX audits. I have never seen this transaction given out to the user community and just want to give an answer other than “It just isn’t done!”. Can you please explain to me why or why not this transaction or part of this transaction should or shouldn’t be extended into the user community? Thank you!

Regards,

Gregory A Pioch

SAP/EDI Analyst, Information Services

Inverness Medical Innovations/Unipath

2 Research Way

Princeton, NJ 08540

Work: (609) 627 - 8034

Cell: (201) 956 - 0038

Fax: (609) 672 - 8013

E-Mail: greg.pioch@invmed.com

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

2 Answers

  • Best Answer
    author's profile photo Former Member
    Former Member
    Posted on Feb 28, 2007 at 04:41 PM

    Greg,

    SUIM is a display only transaction. It is suitable IMHO to be given to end users for access reviews.

    Also, you can review the different transactions on each of the nodes and restrict them as you feel appropriate. Such as not giving out change documents, role comparisons and by logon date password change.

    Cheers,

    Ben

    Add a comment
    10|10000 characters needed characters exceeded

    • Well, SUIM allows the user to determine not only his/her own authorizations / roles and to evaluate the corresponding change documents - but the user can also request information on other users.

      Maybe transasction SU56 would be sufficient for SOX requirements.

      SU56 does only list the authorizations assignments of the own user.

      Unfortenately it refers to the technical assignments (profiles) rather than the more abstract role assignments.

      Cheers, Wolfgang

  • author's profile photo Former Member
    Former Member
    Posted on Feb 28, 2007 at 04:41 PM

    I'm new to security as well, but I find SUIM very valuable to auditing authorizations. We've granted it to our security admin role as well as our security auditor role (which includes SM18, SM19, and SM20 as well).

    I don't think its necessary for very many users, but I do think its appropriate for those who do security audits for compliance and SOX.

    Regards,

    Erik Jensen

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.