Spend Management Blogs by SAP
Stay current on SAP Ariba for direct and indirect spend, SAP Fieldglass for workforce management, and SAP Concur for travel and expense with blog posts by SAP.
Showing results for 
Search instead for 
Did you mean: 
Product and Topic Expert
Product and Topic Expert

It is no surprise that a supplier account on SAP Business Network holds sensitive business information. Therefore, it is important to keep access to your account as secure as possible, just like you do with any cloud-based application you use in your daily life. Here are two top tips to help you enhance the security of your supplier account

1. Don’t share access credentials

Keeping only one set of credentials with admin rights and sharing them with anyone who needs access is surprisingly still very common practice, especially in smaller organizations. While it is of course an easy and hassle-free method, is is also a highly unsecured one. Even in teams made of a limited amount of trustworthy colleagues, openly sharing access information exposes to high risks of anyone accessing your account and gaining or messing with valuable data.

The better practice is for the administrator of the account to create users, so that each individual who needs access gets their own credentials. You can then also decide the level of visibility and range of action that each user gets, based on their job responsibility and the way they should be using SAP Business Network. Don’t forget to also remove the access of anyone who has left your company.

In a nutshell, keep your account tidy and ensure the structure of users mirrors the structure of your organization. If you need any guidance on how to setup users and roles, watch this short tutorial video.

2. Activate the Multi-Factor Authentication (MFA)

The multi-factor authentication is a two-step verification process where users are required to authenticate themselves a second time using a time-based verification code. In comparison with the single step authentication process, the multi-factor authentication process provides enhanced security.

Account administrators can now enable the following functionalities for users in their organization by selecting the desired users from a table:

  • Require multi-factor authentication for critical fields
  • Require multi-factor authentication for login

Once the multi-factor authentication is enabled for your organization, you must install an authenticator application on your handheld device to generate a time-based verification code. Examples of compatible apps are SAP Authenticator, Google Authenticator or Microsoft Authenticator, all available for iOS and Android devices.

For detailed instructions on how to enable multi-factor authentication on your SAP Business Network account, please refer to this helpful guide.


With these few practices in place, you are certain to keep transacting with your customers with renewed efficiency and peace of mind.