Skip to Content
0
Former Member
Dec 02, 2011 at 05:32 PM

How to manage Basis Transactions?

452 Views

Hello all,

Post AC 5.3 go live, we've taken on the painstaking task of re-engineering many of our SAP ECC Security roles. Our goal was to be SOD violations free at the Role level, and then put the ownership on the Business to decide what violations at the User level were warranted (requiring mitigation), or else a change would have to occur on the Business Process (BP) side.

We are struggling with the assignment of certain Basis categorized transactions such as SM36, SM37, SE16. The majority of our BPs are very batch processing oriented, which require our users to have batch processing authorization. However, if we included SM37, for example, into any role RAR comes back with a HIGH risk message.

I'd like to know how other AC shops are dealing with these types of transactions/authorizations? We have an upcoming audit in March and would like to have something in place before then.

Thansk in advance,

Jose Garcia

Edited by: Jose Garcia on Dec 2, 2011 12:32 PM