Risk to changing Logical System definitions and usage within client configuration
BD54 : Maintain Logical Systems
BDLS : Convert Logical System Names
Risks to changes of OS commands and OS
OS02 : Operating System Configuration
OS03 : Operating System Parameter Changes
OS04 : Local System Configuration
OS05 : Remote System Configuration
Risks to Administer the System Parameters on the system (auditors look at these)
RZ04 : Maintain SAP Instances
RZ10 : Maintain Profile Parameters
RZ11 : Profile Parameter Maintenance
Risks to changing system/environment settings and connections
SAINT : Add-On Installation Tool
SCC4 : Client Administration
SCOT : SAPConnect Administration
Risk to activate/execute services
SICF : HTTP Service Hierarchy Maintenance
Change licensing data pertaining to contracts and functionality ($$ impact with SAP when audited)
SLICENSE : SAP Licenses Administration
Risk to locking tcodes used for processes/sending messages to all system users/removing required locks for PERNR Objects
SM01 : Lock Transactions
SM02 : System Messages
SM12 : Display & Delete Locks
Notes:
It is recommended that you work with your Basis and Tech Teams to identify the requests for access to any technical transaction and work together to ensure any access is granted with any assumed risks.
