CERPASS® by CompliantERP assists businesses to manage and monitor the use of privileged access by Support Staff in their SAP ERP systems.
13th July 2023, Brisbane, Australia: CompliantERP unveiled an exciting addition to CERPASS today with the launch of Emergency Access Management, a new feature available to both new and existing customers. This valuable enhancement is seamlessly integrated into the CERPASS® core solution, embodying the company’s dedication to developing cutting-edge solutions that enhance an organization’s SAP security compliance capacity and audit preparedness.
“CERPASS® was developed in response to the pressing need for companies to address gaps in SAP application security, effectively manage access risks, navigate compliance hurdles, and fulfil audit requirements, all without the need for specialised in-house resources or large enterprise-size budgets.”, said Phil Shipley, Co-founder, and Director of CompliantERP.
“We are thrilled to witness CERPASS®‘s ongoing fulfilment to our development roadmap, delivering extended features to our customers. These enhancements enable them to elevate their SAP compliance efforts and effortlessly meet their audit obligations with ease and simplicity.”
The Emergency Access Management or ‘EAM’ feature, enables SAP Security Administrators to authorise Support Staff with the ability to request temporary access to high-privileged security roles. This allows them to perform critical fixes and investigations beyond their normal access privileges.
EAM Users can effortlessly submit requests one or multiple support roles, flagged as EAM roles, that are required to perform an emergency action in a production client. EAM Owners review the justification and proposed actions outlined in the request, and either approve or reject the request upon their review.
Once approved, EAM Users are granted additional access for a fixed duration. Having completed their emergency action, they can then finalise their EAM session by providing additional commentary on the actions performed.
EAM Monitors review the logs of actions performed, ensuring Support Staff are only performing necessary tasks whilst privileged access is assigned.
Emergency or privileged access in a production environment has a high focus from external auditors. It is important for businesses to demonstrate active management of support access, and only provide elevated access on an as-needed basis. By splitting out day-to-day access from privileged access, businesses ensure Support Staff do not have the ability to perform end-user business processes or potentially impact the integrity of the SAP system, without closer scrutiny.
“CERPASS® EAM has been developed to deliver unparalleled compliance capabilities to our customers. Being an ‘out-of-the-box’ feature, CERPASS now offers a comprehensive, compliant, and quick time to value EAM solution. The development of this feature addresses issues we have identified with other EAM solutions, with a view to develop an SAP compliance feature that can be used by all users, regardless of their technical expertise”, said Phil.
CERPASS® is the ideal choice for businesses that need a practical solution that is cost effective and fully supported on the SAP® Business Technology Platform. As a cloud-based system, updates are activated regularly with no additional cost of ownership. EAM reports are included in the CERPASS dashboards, offering users a real-time view of compliance status, upcoming tasks, exceptions, and overall effectiveness of a business’s compliance processes.