Professional Documents
Culture Documents
SAP Migration To MyID - 2023-11-30
SAP Migration To MyID - 2023-11-30
SAP Migration To MyID - 2023-11-30
What I mean by that when you join under a job profile, you get automatically assigned some groups
and some software.
And I obviously said that there's a number of users in SAP and other applications as well that would
perhaps be deemed privileged.
Basically, what what we've said is group ERP at the moment is that we can't do anything.Before year
end, because we just have so much on. And it was, it wasn't planned.
To deliver this, but the early in the new year, we'll hopefully put. A project in place, so we'll have
APM and we might have some resources assigned to it that will hopefully.Across all our platforms,
not just SAP, all the different scenarios. So where we use privilege users where we have technical
user system users need all rotation. So we'll detail all the scenarios and then we'll have to engage
with the my ID team.To determine whether or not they can address all these scenarios with kind of
connectors so you know, I know that.There is possibility to connect to SAP.
Using Cyber Ark and, you know manage access, you know it can the same be said for business
objects for the Hanna database, for other applications as well. So so we're going to have to go with
each of these scenarios and see if technically the tool can facilitate.
Then once we've determined if it can facilitate, we have to go through some testing.
And their access will need to be managed via Cyber Ark into SAP.
What we deem as as as privileged, don't know if it's kind of group or ERP and so on. Do you know like
you know with ability to access SE 38 and run programmes directly in the system and adjust roles
and you know change authorisation and you know then maybe 30 or 40 users.
OK. No. OK. So so that that's that's that's much easier than what I thought initially because there was
another dispatcher going on with Gareth, which was can we can we automatically instead of raising a
ticket and someone will manually add the rules to you know the the finance guy in GF4 for instance
or the share service centre as it was called before instead of doing that. Can we automate that part?
So I thought she was that but actually is the is the privileged users.
Yes. Yeah, I mean, I know I know there's been discussions with the Idam team about whether or not
we could.