For many enterprises, SAP systems are an essential part of their corporate IT infrastructure. Data is held in SAP HANA; the migration to S/4HANA is ongoing, and highly individualized functionality is coded right into the existing standard SAP modules by using ABAP or Java.

Although there are many other systems in place which also contain critical information, many businesses still rely on the availability of well-designed and well-protected SAP Systems. Traditionally, SAP systems are a major focus area for internal and external auditors. For the successful implementation of adequate controls, it is essential that all existing SAP systems are covered by an effective solution for managing risks, and within that for managing access control and SoD controls and implementing adequate Access Governance.

SAP solutions remain at the core of the LoB infrastructure of many organizations. Managing access entitlements including roles, but also SoD (Segregation of Duties) rules, firefighter access, and other aspects around identity, access, and security is essential for protecting these business-critical applications.

This report provides an overview of the market for Access Control Tools for business application environments that are centered around SAP solutions, including traditional SAP ECC environments. The main focus is on these environments, including SAP S/4HANA, SAP S/4HANA Cloud and other SAP cloud applications, with a limited focus on support for other Line of Business (LoB) applications.

We examine the market segment, vendors, product functionality, relative market share, and innovative approaches to providing solutions that increase security in these business application environments primarily for SAP, by restricting access, controlling break-glass access, and related capabilities.