-
Products and Technology
By Category
-
Groups
Activity Groups
Industry Groups
Influence and Feedback Groups
Interest Groups
Location Groups
Customer Only Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
Products
Learning and Support
-
- Products and Technology
- Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
- Explore SAP
-
Products
- Products
- SAP Business Suite
- Artificial Intelligence
- Business applications
- Data and analytics
- Technology Platform
- Financial Management
- Spend Management
- Supply Chain Management
- Human Capital Management
- Customer Experience
- SAP Business Network
- View products A-Z
- View industries
- Try SAP
- Partners
- Services
- Learning and Support
- About
- SAP Community
- Products and Technology
- Additional Q&A
- Critical Actions
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Critical Actions
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 2010 May 10 7:27 AM
Hi Everyone,
I'm trying to establish what is a good practice to follow on how to deal with critical actions.
Our thinking is that even though they are critical actions people will still need to have access to them.
Here are some options with the cons we have been considering:
1. Add the actions into Firefighter id's & roles. We don't necessarily want to add actions into a firefighter role that someone is expected to do during their daily/weekly/routine activities.
2. Disable the Critical Actions rules. This will disable your ability to easily identify when an unwanted user has access to these actions.
3. Create mitigation controls for these critical actions and assign them to the specific users. This is quite and administrative burden due to the number of critical actions. We would not want to mitigate at the Higher risk level but rather at the individual rule level.
We are leaning towards option 3 but would appreciate some other options and input on how to deal with these?
Kind Regards
Know the answer?
Help others by sharing your knowledge.
AnswerNeed more details?
Request clarification before answering.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
To cut down on the administrative burden of mitigating the users you could create a critical transaction role and assign the users you want to mitigate to this role and then assign the role to the mitigating control. This way you'll only be adding user to the SAP role to consider them mitigated.
Dave wood
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Bluesky- You Asked for Simpler. SAP Signavio Listened. Here Is What Changes. in Technology Blog Posts by SAP
- SAP SuccessFactors 1H 2026 Release: UX and Mobile Innovations in Human Capital Management Blog Posts by SAP
- Modern SAP Cloud ERP Security: From Core ERP to BTP, SaaS, and AI in Technology Blog Posts by SAP
- How SAP Signavio, LeanIX, CALM & SuccessFactors Form a Unified HR IT Architecture in Human Capital Management Blog Posts by SAP
- SAP MDG + Azure AD - Part 2: Connecting SAP to Azure Active Directory – The Technical Setup in Technology Blog Posts by Members
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.