- Legal Notice
- Legal Notice
See our collection of questions in the FAQ – Authorization Process Manager
Our Authorization Process Manager tool has been around for more than 13 years and has served hundreds of international customers. We have constantly been developing it throughout the years, and the feedback we have received from our many customers has been invaluable in order to build the most efficient tool for testing authorizations. We have collected the most common and relevant questions regarding Authorization Process Manager for you to learn about the more technical functions of APM.
APM supports simultaneous Fiori authorization error reporting as well as error correction in both layers.
This means that when a tester is testing through the Fiori Launchpad and is stopped by an authorization error, the tester can report the error directly from the Fiori Launchpad and hereafter update the missing access, thereby enabling the continuation of the test. Errors from both layers will be forwarded and registered in the APM Cockpit.
Testers can execute the test from the initial screen of SAP, from the Fiori LaunchPad, or from the test screen delivered from APM.
If facing an authorization error, the tester simply uses the relevant APM SU53 error report dedicated for the test-user to report and update the error.
After a 10-15 second break entering the error description, APM automatically updates the test-user privileges, and the tester continues the functional testing.
It is possible to allow singled-out users to be able to update authorization errors blocking their daily work in production. All updates will be monitored, and real-time email notifications can be activated.
The restriction functionality can even reduce the scope and ability to update access, reducing the user to only report missing access. A number of our customers have utilized this concept to eliminate the use of SAP_ALL or wide support roles in the production.
The restriction functionality can reduce the scope and ability to update access, reducing the user to only report missing access or, if restricted, only report the error identified.
It is possible to restrict on Object Class, Objects, Transaction code, Organisational level, and Field values on the specific client being tested on. Restrictions can be useful when designing the different test phases – e.g., when needing to restrict the update possibilities in a user acceptance test compared to the initial role unit testing being less restrictive.
Notifications can be configured to enable emails to be sent to administrators (responsible users) when any user performs updates to the test container. In larger-scale test cycles, this might not be relevant (due to the number of reported errors), but supporting tests in different time zones or production usage of APM email notification can be helpful.
APM supports the standard process, routing authorization errors from productive users experiencing inadequate privileges in their daily tasks in SAP. APM will efficiently collect the relevant data directing the error message to the SAP Compliance Team for further investigation.
In particular, organizations with operations across time zones and with a central SAP Solution Centre will benefit from the structured, documented, and efficient error-handling process. Productive users will not be able to update their access, only report authorization errors.
No – preventive check in Access Control is disabled when the APM-test container role is updated. If new SoD conflicts occur analyzing an update on a user’s APM Test Container the SoD will be identified when updating the business role and processing a risk report in Access Control.
A huge reduction in the effort of testing can be expected – up to a 75% reduction in time spent by testers. Furthermore, it offers the potential for saving an entire test cycle since authorization tests can be performed along with integration tests.
Furthermore, the authorization team can save time in the design and build phase of the roles as well as administration of the test being executed. Some customers report that the elimination of the frustration among the testers dealing with authorizations errors and the satisfaction of a smooth test run is the key value.
The reporting module delivers a sub-set of reports giving the real-time status of the test being executed and enabling download of all error-related information for documentation purposes.
The reporting supports information about the technical details about the errors being reported as well as similar issues. Project management is supported by a test execution overview and other status reporting options supporting validation of the progress as well as the quality of the test.
When a tester is facing an authorization error two options for updating can be configured for the individual test user. The user can have the option of reporting the error specifying test case ID, test case number, and leaving a comment for the authorization team followed by submitting the form and continuing the test.
The alternative is the One-click. Here the tester, when facing an authorization error, goes one step back push the “One-click” reporting button and APM will make the update in the background and restart the transaction code getting the tester ready to continue testing.
We always look forward presenting Authorization Process Manager to present customers, possible new customers, partners and network. So, if you want to learn more, have questions or would like to see a live demo of CN Authorization Process Manager please contact us.
“My ambition is to spread the word about our well proven product suite that can help solve the many challenges in the area of SAP compliance operation. Understanding the needs of our clients and map those to the right components of ComplianceNow in order to deliver the needed changes for optimizing the compliance operation”
“Our vision is to strengthen our customers compliance operation through a wide range of relevant components facing the challenges and optimizing processes within SAP Compliance. Expect that ComplianceNow is fairly priced, has a fast and uncomplicated installation process, and is easy for your organization to take into use”