The Dreaded SAP_ALL Power Profile
The authorization profile, SAP_ALL has such vast amounts of authorizations inside that it is mistakenly known as “the profile that can grant everything in the SAP system”. These authorization profiles create security-holes, grant a huge amount of authorizations to people that can’t justify them, and expose the organization to possibilities of fraud and internal hacking. Cleary, GRC auditors do not like users with these “Power Profiles” either. Find out how to really resolve SAP_ALL situations.