Date
July 15, 2020
Time
11:00 AM PDT / 1:00 PM CDT
Getting “granular” with SAP’s role-based access control model can be a challenge. While basic roles and authorizations are more straightforward, once you get down to the derived roles, composite roles or enabler roles to fine-tune access controls, things can get complicated.
While these different role types help with separating org level access, they can quickly lead to role explosion and loss of transparency when composite roles are created. And, pretty soon it becomes exceedingly complex to tie the right org element with the correct activity that the user needs to perform, such as, create, change or display.
These fine-grained controls are necessary for organizations but they carry a high overhead in terms of implementation and maintenance efforts. Customizations must be made, code must be embedded, and all of this complicates lifecycle management (and migration efforts, too).
Join the SAP Security experts at Appsian as they present how organizations can leverage Attribute-Based Access Controls (ABAC) to simplify fine-grained controls by replacing customizations with configurable policies. In this session, attendees will:
- Learn how RBAC and ABAC can work together to your benefit
- See fine-grained, attribute-based authorizations in action
- Review common use cases for simplifying the SAP security model
- Explore the additional benefits ABAC can offer in dynamic access environments
Presented by :
Greg Wendt
Executive Director Security Solutions
Appsian
Rajesh Rengarethinam
VP of Engineering (SAP)
Appsian