This document provides a user manual for the SAP GRC Access Control User Access Review (UAR) functionality. The UAR process allows for the periodic review of user access rights and roles across SAP systems to ensure proper access governance and compliance with security policies.
Key sections covered in the manual document are:
- Introduction and context for the UAR process
- Benefits of conducting periodic user access reviews
- Overview of the UAR review process and participants (administrators, reviewers, coordinators)
- Detailed steps for the different phases of review:
- First Step (review by Line Manager)
- Second Step A (review by Group Manager)
- Second Step B (review by Company Controller)
- Instructions for running background jobs to generate review requests
- Description of available reports for monitoring review activities:
- UAR History Report (Detail)
- User Review Report (Summary)
- Process diagrams and tables explaining each review workflow
The manual walks through the end-to-end UAR process, providing screenshots and steps for reviewers to approve, reject, or maintain user access, as well as instructions for administrators to configure and monitor reviews.