Reviewing Access to SAP and CICS M-DCPS utilizes a decentralized security model which requires a site administrator to determine appropriate authorizations and/or roles for their respective staff at his/her discretion. Access to SAP roles is controlled via the ERP Quad-A module. In order to assist site administrators with role assignment and maintenance, ITS has developed a new SAP Role Assignment Report. The Network Security Standards (Section 4.1.5) require site administrators to perform a monthly review of the RACF report that lists authorized users of various mainframe and Portal-related applications. The new SAP Role Assignment Report will have the same look and feel as the existing RACF report, and site administrators will be required to perform monthly reviews of the report to ensure the appropriateness of authorized individuals.
|