Elevated Rights Manager
The Elevated Rights Manager grants sensitive fire-fighting access in an automated workflow-driven process, and enables your management team to perform a structured review of any activities that were performed during the Elevated Rights Access period.
A well defined emergency access process leads to lower risk exposure
Appropriate control of support and IT personnel
Enhanced business oversight through review of privileged activities
Detailed logging of all activties performed through privileged access
Granting Sensitive Access in a Safe and Structured Environment
From time to time, clients need temporary or emergency access for a limited period – often called firefighter access. This module allows you to do this effortlessly, while adhering to audit requirements.
Adaptable to your environment
The Elevated Rights Manager can be tailored to your specific business environment. Elevated Rights Access may be granted to either a role or to an SAP user, with approval and review processes that can be customised to suit your organisation.
Elevated Rights Roles
Privileged access roles can be requested by pre-approved SAP Users. Soterion will assign the privileged roles to the SAP user, who will use their own SAP User ID to perform the required activities in SAP.
Elevated Rights SAP Users
An SAP User account containing privileged access will be unlocked, and the password will be generated and sent to a pre-approved entitled SAP User. The privileged SAP User account will be used to perform the necessary activities in SAP. Upon completion the privileged SAP User account is locked and the password reset.
Checking Out Elevated Rights Access
From time to time, clients need temporary or emergency access for a limited period – often called firefighter access. This module allows you to do this effortlessly, while adhering to audit requirements.When a user performs a check out, the Elevated Rights Access will be assigned to them for a predefined period to enable them to perform the required privileged activities. Once completed, the user will be able to check the Elevated Rights Access back in. Alternatively, it will automatically be checked in once the allocated period has expired.
Review of Elevated Rights Access Activities
All changes in SAP will be logged and downloaded to the Soterion Elevated Rights Manager for review. Transactions that were executed and any sensitive fields that were changed can be reviewed by the reviewer. Any sensitive transactions that were executed (SOD or Critical Transactions) will also be highlighted for their attention.
Experience a better way of managing your GRC today
Speak to one of our GRC consultants to explore how we can help solve your GRC objectives