Access enforcer is a tool within SAP's GRC suite of products which automates the entire user management process. Access enforcer works as web-based workflow configurable tool and automates user request approval and compliant provisioning. The great thing about access enforcer is you can have both SAP as well as non-SAP systems mapped into Access enforcer. Access enforcer comes with features such as integrated risk analysis and user administration. These ensure that the SAP system is SOX compliant and clean.

SAP's GRC products come with a simulation feature which is also present in access enforcer. Any changes before being migrated can be simulated to check whether they will result in risks. This is a time saver in real world scenarios as one can easily simulate processes for risk analysis. Access enforcer comes with an inbuilt audit trail to check all activities performed from an authorized access point. Access enforcer can be configured to have multiple workflows and approval paths which get triggered based on type of the user access request. There are other features such as self service password resets, automated emails to users based on preset conditions etc. All of these make access enforcer a very useful product. As a note, it helps to have all the GRC products such as compliance calibrator, role expert etc installed to have better controls around user access.

Related Posts

SAP Go Live Date - Risk Issues
SAP Business Object Repository
SAP CATT Computer Aided Test Tool
SAP Basis Transaction Codes