SolarWinds Access Rights Manager (ARM) vs. SAP Access Control

It [SolarWinds Access Rights Manager (ARM)] is well suited for small to medium sized companies who want to enhance and ease up their daily work. As well as it is suited for organized structures, it has its problems with very complex environments. For example, if you are working with direct and multiple permissions instead of having more granular group based permissions.

Incentivized

Appropriate for SAP hrs hierarchy integration and can have multiple hierarchies of org structures adopted as alternative workflow support. Cons of access control are the logs of firefighter usage are still limited in depth and does not evolve to adop more cloud products which are coming at a plaster pace than the ac product as such.

• SolarWinds Access Rights Manager is easy to set up and configure. We had the first report generated in a few hours.
• The automated feature for the reports is great. We just set it and forget it and now the reports get emailed on schedule.

Incentivized

• SAP Access Control ensures that our services are accessed by the right users since it send me alerts when an employee tries to access any application. That way, I am able to either authorize or cancel the request to safeguard of company data.
• With SAP Access Control, it is easy to automate and monitor how our team access services and applications. SAP Access Control has an automatic feature that notifies me when employees access applications and services and the issues they are encountering.
• In addition, SAP Access Control add security on employees login to ensure that their data on the applications are encrypted to never leak to cyber attackers.

Incentivized

• Licensing model when we changed over to SolarWinds was [I feel] a nightmare. It needs to be more streamlined and SolarWinds needs to understand what their customers require. When we changed over to SolarWinds we found it very hard to get answers to what modules we were still licensed for.
• Our current system is not functioning. We can't login to the application with the accounts we created that were working. The error that appears doesn't help to resolve it. So at present we just renewed licenses for this year and we can't use the system.

Incentivized

• It still uses the webdynpro for the front end. All webdynpro applications should be migrated to Fiori for a better user experience.
• Some functionalities can't manage in mass way. I.E. building derive roles/multiple single roles,
• Interface with LDAP is not efficient.

Incentivized

It is in place and working. No time or money to consider anything else.

Incentivized

We are very happy with it.

End user experience is much better than administration

Incentivized

This is a great tool for a medium to large sized company. SAP Access Control requires a great deal of SAP knowledge to use, but it is certainly information that can be learned. Their customer support is wonderful and easy to work with. The overall usability is great. I greatly recommend this software.

Incentivized

On occasion the server will need to be restarted to get things running again

Incentivized

Satisfactory performance

Incentivized

Very slow response times and sometimes I found the solution and ended up sharing it with support

Incentivized

This product fulfills all our requirements. We can use this for user management, role management, risk analysis, business role management, workflow management. Initial configuration takes a lot of effort. Otherwise it's a great product for the end user. SAP Access Control tool performance needs improvement, sometimes it slows down the processing time for requests.

Incentivized

It was my first exposure to this type of product and I wasn’t given the time to figure out how best to implement it. I would say get a plan together of what you are tying to accomplish first

Incentivized

I found the installation and configuration to be much easier and more straightforward. What also assisted in the decision to go with Access Rights Manager, was the fact we already made use of Solarwinds products. Knowing from previous experiences with their support staff, meant we knew how great their after-hours support was whenever we had any technical issues with the platform. We felt it would be better to keep it all under one roof so to speak

Incentivized

Pricing was higher for the cloud version of the BTP service - IAG. SAP Access Control pretty much facilitates everything we are looking for as an enterprise with an efficient dollar cost ROI for the services we are looking for. Also, there were many features on the cloud version which came bundled with the license and we had to pay for them even though we did not actually use these products.

Incentivized

No experience with this

Incentivized

• Team leads recieve automated reports of permissions within their team, and it allows them to proactively audit their team members
• Security specialists have really clear dashboards to audit individuals
• We can be sure we never leave a permission open after a person leaves

Incentivized

• Reducing risk of fraud. Implementing SAP Access Control allows analysis of every role assigned to a job on the organization. Through this analysis, weakness on roles are detected, corrected and monitored. As the users feel the change, they also feel that they are being monitored, preventing any intent to use his position and privileges to take personal advantage. So a major impact to organizations is to reduce the financial lost due to frauds.
• Reducing cost for monitoring. Another positive impact is lowering the cost of monitoring. This is twofold: First, a rather small team can manage access management. Second, through the use of SAP Access Control the complete universe of roles and users can be monitored without increasing the cost for the continuous monitoring.
• During transactions. The use of SAP Access Controls allows detection of transactions that, from an information security point of view, require some redesign. When SAP GCR is implemented, you make some discoveries such as: obsolete transactions, transactions with no authorization objects and the like. The transactions with these problems can be left out of the active roles, waiting for remediation of the issues found.

Incentivized