Deeper analysis on the use of critical transaction codes using Firefighter!

Is your Firefighter Controller reviewing every activity in detail? Does he/she review the most critical business transaction codes?

Firefighter controller log review is the same challenge for one of our clients. The FFID logs will be regularly reviewed, but they want to segregate the FFID usage from the most critical transaction code usage for detailed analysis. They have identified around 100 transaction codes as part of this exercise, and any use of these transaction codes by the FFID must be subjected to additional review after reviewing by the FF Controller.

Due to the lack of routing conditions, the standard process ID – Firefighter Log Report Review Workflow (SAP_GRAC_FIREFIGHT_LOG_REPORT) doesn’t meet this requirement and needs additional customization.

Is there a way to automate firefighter controller log review? Yes, of course. This is what we delivered:

In order to maintain the custom transaction codes, we created a custom table and a TMG. As a result, our customer does not have to modify the Decision table every time.

  1. A BRF+ DB lookup has been created.
  2. Custom BRF+ decision tables have been created to return the value.
  3. Created two different MSMP paths with appropriate stages
  4. Defined MSMP routing conditions according to business needs

The review and approval process is now fully automated, and if the user has executed any critical transaction codes, the Log review request is assigned to the “Internal Review Board (IRB)” after the controller review.

Are there any additional automations that can be performed with the FF Log Review?

Additionally, an enhancement can be provided to identify if the user has entered any critical transaction codes on the Reason code screen.

ToggleNow also implemented BOT-based automation to review logs. Get in touch with our SMEs today! Visit our automation stories to know various automations that are delivered by ToggleNow team.

Receive updates on upcoming webinars, the latest case studies, and more directly in your inbox. Stay informed and connected by subscribing to our newsletter.

Raghu Boddu

Meet Raghu Boddu an expert in SAP Security and Governance, Risk, and Compliance (GRC). With over 20+ years of experience in the field, Raghu has a deep understanding of the nuances and complexities of SAP systems and how to keep them secure. Raghu has worked with various clients across different industries, helping them implement effective security and GRC strategies to protect their sensitive data and meet regulatory compliance requirements. Raghu is a respected thought leader in the SAP security and GRC community, regularly sharing insights and best practices through presentations and publications. Whether you’re looking to improve the security of your SAP system or ensure compliance with relevant regulations, Raghu can provide the guidance and expertise you need to succeed.

Explore our success stories

A case study on analyzing Custom Transaction codes and updating the Risk Ruleset

In today’s dynamic business landscape, many SAP customers leverage custom transaction codes to streamline operations and enhance efficiency. However, with customization comes responsibility, as it introduces risks such as segregation…

How we helped businesses succeed by providing them with innovative and effective solutions to manage risks

In today’s business landscape, managing SAP systems can be challenging. Many companies struggle with Segregation of Duties (SoD) conflicts and irrelevant transaction codes, making audits cumbersome and increasing the risk…

Case study on SAP Licensing Optimization

Today’s business environment requires the efficient management of SAP licensing, though it can be challenging. This problem can be resolved by Optimus for SAP Applications, developed by ToggleNow, by offering…

Learn how we can help you and your enterprise through the GRC transformation journey. Choose the appropriate option and fill out the form. Let’s get started!

Product demo

Explore our range of SAP Access Governance products.

Detailed Discussion

Engage with our SMEs regarding any challenges in Access Governance.

Partnership Discussions

Interested to be part of ToggleNow partner network? Let’s discuss!