{"id":2505,"date":"2026-06-04T12:24:27","date_gmt":"2026-06-04T12:24:27","guid":{"rendered":"https:\/\/swawe.fr\/?p=2505"},"modified":"2026-06-04T12:26:35","modified_gmt":"2026-06-04T12:26:35","slug":"conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces","status":"publish","type":"post","link":"https:\/\/swawe.fr\/en\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/","title":{"rendered":"Conflits SoD dans SAP : comment \u00e9valuer et piloter vos risques d&rsquo;acc\u00e8s"},"content":{"rendered":"\n[et_pb_section fb_built=\u00a0\u00bb1&Prime; _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb][et_pb_row _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb][et_pb_column type=\u00a0\u00bb4_4&Prime; _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]D\u00e9tecter les conflits de S\u00e9paration des T\u00e2ches (SoD) dans SAP est l&rsquo;un des enjeux les plus critiques de la gouvernance des acc\u00e8s. Pourtant, beaucoup d&rsquo;organisations naviguent encore \u00e0 vue \u2014 entre matrices Excel obsol\u00e8tes, faux positifs en masse et revues annuelles insuffisantes. Voici une d\u00e9marche structur\u00e9e, en 4 \u00e9tapes, pour passer d&rsquo;une gestion r\u00e9active \u00e0 un pilotage continu de vos risques SoD.[\/et_pb_text][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb background_color=\u00a0\u00bb#f2f2fa\u00a0\u00bb custom_padding=\u00a0\u00bb20px|20px|20px|20px|true|true\u00a0\u00bb border_radii=\u00a0\u00bbon|10px|10px|10px|10px\u00a0\u00bb border_color_all=\u00a0\u00bb#004899&Prime; box_shadow_style=\u00a0\u00bbpreset4&Prime; box_shadow_horizontal=\u00a0\u00bb6px\u00a0\u00bb box_shadow_vertical=\u00a0\u00bb6px\u00a0\u00bb box_shadow_color=\u00a0\u00bb#EF7E26&Prime; global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]<p><strong>L&rsquo;essentiel :<\/strong><\/p>\n<ul>\n<li>Un conflit SoD survient lorsqu&rsquo;un utilisateur cumule des droits permettant deux actions incompatibles dans un m\u00eame processus (ex : cr\u00e9er un fournisseur ET valider un paiement).<\/li>\n<li>L&rsquo;analyse doit aller au-del\u00e0 des t-codes et descendre au niveau des<strong> objets d&rsquo;autorisation SAP<\/strong> pour \u00e9liminer les faux positifs (40 \u00e0 60 % des conflits remont\u00e9s avec une analyse t-code classique).<\/li>\n<li>Croiser droits th\u00e9oriques et <strong>transactions r\u00e9ellement ex\u00e9cut\u00e9es<\/strong> (logs SM20, STAD) permet de distinguer les risques actifs des risques dormants.<\/li>\n<li>Une revue annuelle ou semestrielle est insuffisante : les mouvements de personnel rendent les donn\u00e9es obsol\u00e8tes en quelques semaines.<\/li>\n<li>La d\u00e9marche compl\u00e8te couvre 4 \u00e9tapes : diagnostic pr\u00e9alable \u2192 construction de la matrice \u2192 analyse des acc\u00e8s \u2192 industrialisation.<\/li>\n<li>Chaque action corrective doit \u00eatre trac\u00e9e avec date, responsable et justification pour \u00eatre d\u00e9fendable lors d&rsquo;un audit<\/li>\n<\/ul>[\/et_pb_text][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]<h1>Qu&rsquo;est-ce qu&rsquo;un conflit SoD dans SAP ?<\/h1>\n<p>La <strong>S\u00e9paration des T\u00e2ches (SoD)<\/strong> est un principe de contr\u00f4le interne fondamental : aucun utilisateur ne devrait pouvoir initier et finaliser seul une op\u00e9ration sensible. Dans SAP, ce principe se traduit par des r\u00e8gles d&rsquo;incompatibilit\u00e9 entre certaines transactions ou objets d&rsquo;autorisation.<\/p>\n<p>Lorsqu&rsquo;un m\u00eame utilisateur d\u00e9tient les droits lui permettant d&rsquo;ex\u00e9cuter deux actions incompatibles, on parle de <strong>conflit SoD<\/strong>. Ce conflit peut \u00eatre :<\/p>\n<p><strong>Th\u00e9orique<\/strong> : l&rsquo;utilisateur poss\u00e8de les droits n\u00e9cessaires, mais ne les a pas exerc\u00e9s conjointement. Risque potentiel, non exploit\u00e9 \u00e0 ce jour.<\/p>\n<p><strong>Av\u00e9r\u00e9<\/strong> : l&rsquo;utilisateur a effectivement r\u00e9alis\u00e9 les deux types d&rsquo;op\u00e9rations incompatibles. Risque actif, \u00e0 traiter en priorit\u00e9 absolue.<\/p>\n<blockquote>\n<p><strong>Exemple concret :<\/strong> un utilisateur ayant acc\u00e8s \u00e0 FK01 (cr\u00e9ation fournisseur) ET \u00e0 F110 (validation paiement automatique) peut cr\u00e9er un fournisseur fictif et d\u00e9clencher un virement en sa faveur sans aucun contr\u00f4le interm\u00e9diaire. C&rsquo;est l&rsquo;un des sch\u00e9mas de fraude les plus fr\u00e9quents sur SAP.<\/p>\n<\/blockquote>\n<h2>Les 4 processus SAP les plus expos\u00e9s aux risques SoD<\/h2>[\/et_pb_text][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb hover_enabled=\u00a0\u00bb0&Prime; sticky_enabled=\u00a0\u00bb0&Prime;]<p>Tous les processus SAP ne pr\u00e9sentent pas le m\u00eame niveau de risque.<\/p>\n<p>Voici les domaines \u00e0 couvrir en priorit\u00e9, avec les exemples de conflits les plus courants :<\/p>[\/et_pb_text][et_pb_code _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]<style><!-- [et_pb_line_break_holder] -->  .swawe-table-wrapper {<!-- [et_pb_line_break_holder] -->    overflow-x: auto;<!-- [et_pb_line_break_holder] -->    margin: 40px 0;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-table {<!-- [et_pb_line_break_holder] -->    width: 100%;<!-- [et_pb_line_break_holder] -->    border-collapse: collapse;<!-- [et_pb_line_break_holder] -->    font-family: \"Inter\", sans-serif;<!-- [et_pb_line_break_holder] -->    background: #ffffff;<!-- [et_pb_line_break_holder] -->    border-radius: 18px;<!-- [et_pb_line_break_holder] -->    overflow: hidden;<!-- [et_pb_line_break_holder] -->    box-shadow: 0 10px 35px rgba(15, 23, 42, 0.08);<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-table thead {<!-- [et_pb_line_break_holder] -->    background: #31ade4;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-table th {<!-- [et_pb_line_break_holder] -->    color: #ffffff;<!-- [et_pb_line_break_holder] -->    text-align: left;<!-- [et_pb_line_break_holder] -->    padding: 20px 24px;<!-- [et_pb_line_break_holder] -->    font-size: 15px;<!-- [et_pb_line_break_holder] -->    font-weight: 600;<!-- [et_pb_line_break_holder] -->    letter-spacing: 0.3px;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-table td {<!-- [et_pb_line_break_holder] -->    padding: 22px 24px;<!-- [et_pb_line_break_holder] -->    font-size: 15px;<!-- [et_pb_line_break_holder] -->    color: #334155;<!-- [et_pb_line_break_holder] -->    border-bottom: 1px solid #e2e8f0;<!-- [et_pb_line_break_holder] -->    vertical-align: middle;<!-- [et_pb_line_break_holder] -->    line-height: 1.5;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-table tbody tr:last-child td {<!-- [et_pb_line_break_holder] -->    border-bottom: none;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-table strong {<!-- [et_pb_line_break_holder] -->    color: #0f172a;<!-- [et_pb_line_break_holder] -->    font-weight: 600;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-tag {<!-- [et_pb_line_break_holder] -->    display: inline-flex;<!-- [et_pb_line_break_holder] -->    align-items: center;<!-- [et_pb_line_break_holder] -->    padding: 8px 14px;<!-- [et_pb_line_break_holder] -->    border-radius: 999px;<!-- [et_pb_line_break_holder] -->    font-size: 13px;<!-- [et_pb_line_break_holder] -->    font-weight: 600;<!-- [et_pb_line_break_holder] -->    letter-spacing: 0.2px;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-tag-critical {<!-- [et_pb_line_break_holder] -->    background: rgba(239, 68, 68, 0.12);<!-- [et_pb_line_break_holder] -->    color: #dc2626;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  .swawe-tag-medium {<!-- [et_pb_line_break_holder] -->    background: rgba(245, 158, 11, 0.14);<!-- [et_pb_line_break_holder] -->    color: #d97706;<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  @media (max-width: 768px) {<!-- [et_pb_line_break_holder] -->    .swawe-table th,<!-- [et_pb_line_break_holder] -->    .swawe-table td {<!-- [et_pb_line_break_holder] -->      padding: 16px;<!-- [et_pb_line_break_holder] -->      font-size: 14px;<!-- [et_pb_line_break_holder] -->    }<!-- [et_pb_line_break_holder] -->  }<!-- [et_pb_line_break_holder] --><\/style><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] --><div class=\"swawe-table-wrapper\"><!-- [et_pb_line_break_holder] -->  <table class=\"swawe-table\"><!-- [et_pb_line_break_holder] -->    <thead><!-- [et_pb_line_break_holder] -->      <tr><!-- [et_pb_line_break_holder] -->        <th>Processus<\/th><!-- [et_pb_line_break_holder] -->        <th>Exemple de conflit SoD<\/th><!-- [et_pb_line_break_holder] -->        <th>Criticit\u00e9<\/th><!-- [et_pb_line_break_holder] -->      <\/tr><!-- [et_pb_line_break_holder] -->    <\/thead><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->    <tbody><!-- [et_pb_line_break_holder] -->      <tr><!-- [et_pb_line_break_holder] -->        <td><strong>Procure-to-Pay (P2P)<\/strong><\/td><!-- [et_pb_line_break_holder] -->        <td>Cr\u00e9ation fournisseur (FK01) + validation paiement (F110)<\/td><!-- [et_pb_line_break_holder] -->        <td><!-- [et_pb_line_break_holder] -->          <span class=\"swawe-tag swawe-tag-critical\">Haute<\/span><!-- [et_pb_line_break_holder] -->        <\/td><!-- [et_pb_line_break_holder] -->      <\/tr><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->      <tr><!-- [et_pb_line_break_holder] -->        <td><strong>Order-to-Cash (O2C)<\/strong><\/td><!-- [et_pb_line_break_holder] -->        <td>Cr\u00e9ation client (FD01) + comptabilisation encaissement (F-28)<\/td><!-- [et_pb_line_break_holder] -->        <td><!-- [et_pb_line_break_holder] -->          <span class=\"swawe-tag swawe-tag-critical\">Haute<\/span><!-- [et_pb_line_break_holder] -->        <\/td><!-- [et_pb_line_break_holder] -->      <\/tr><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->      <tr><!-- [et_pb_line_break_holder] -->        <td><strong>Record-to-Report (R2R)<\/strong><\/td><!-- [et_pb_line_break_holder] -->        <td>Saisie d&rsquo;\u00e9critures (FB01) + validation de cl\u00f4ture comptable<\/td><!-- [et_pb_line_break_holder] -->        <td><!-- [et_pb_line_break_holder] -->          <span class=\"swawe-tag swawe-tag-medium\">Moyenne<\/span><!-- [et_pb_line_break_holder] -->        <\/td><!-- [et_pb_line_break_holder] -->      <\/tr><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->      <tr><!-- [et_pb_line_break_holder] -->        <td><strong>HCM \/ Ressources humaines<\/strong><\/td><!-- [et_pb_line_break_holder] -->        <td>Cr\u00e9ation employ\u00e9 (PA40) + modification de salaire (PA30)<\/td><!-- [et_pb_line_break_holder] -->        <td><!-- [et_pb_line_break_holder] -->          <span class=\"swawe-tag swawe-tag-critical\">Haute<\/span><!-- [et_pb_line_break_holder] -->        <\/td><!-- [et_pb_line_break_holder] -->      <\/tr><!-- [et_pb_line_break_holder] -->    <\/tbody><!-- [et_pb_line_break_holder] -->  <\/table><!-- [et_pb_line_break_holder] --><\/div>[\/et_pb_code][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]<h3>\u00c9tape 1 \u2014 Construire une matrice SoD pertinente<\/h3>\n<p>La matrice SoD est le socle de toute la d\u00e9marche. C&rsquo;est elle qui d\u00e9finit quelles combinaisons de droits sont consid\u00e9r\u00e9es comme incompatibles dans votre contexte. Une matrice g\u00e9n\u00e9rique t\u00e9l\u00e9charg\u00e9e sur internet n&rsquo;a aucune valeur op\u00e9rationnelle si elle n&rsquo;est pas adapt\u00e9e \u00e0 vos processus sp\u00e9cifiques.<\/p>\n<p><strong>Ce que doit contenir votre matrice :<\/strong> pour chaque r\u00e8gle SoD, pr\u00e9ciser les transactions ou objets d&rsquo;autorisation impliqu\u00e9s, le processus m\u00e9tier concern\u00e9, le niveau de criticit\u00e9 (Haute \/ Moyenne \/ Basse), la justification du risque, et le propri\u00e9taire de la r\u00e8gle c\u00f4t\u00e9 m\u00e9tier.<\/p>\n<blockquote>\n<p><strong>\u26a0\ufe0f Erreur fr\u00e9quente :<\/strong> une matrice valid\u00e9e uniquement par l&rsquo;\u00e9quipe IT sera syst\u00e9matiquement contest\u00e9e lors d&rsquo;un audit externe. Les propri\u00e9taires de processus (DAF, Responsable Achats, DRH\u2026) doivent imp\u00e9rativement co-valider les r\u00e8gles qui concernent leur p\u00e9rim\u00e8tre.<\/p>\n<\/blockquote>\n<p><strong>\u00c0 quel niveau analyser les droits SAP ?<\/strong><\/p>\n<p>La grande majorit\u00e9 des outils d&rsquo;analyse SoD travaillent au niveau des <strong>t-codes<\/strong> (codes transactions SAP). C&rsquo;est insuffisant. Un m\u00eame t-code peut \u00eatre parfaitement inoffensif pour certaines valeurs de champs d&rsquo;autorisation (soci\u00e9t\u00e9, centre de co\u00fbt, activit\u00e9\u2026) et dangereux pour d&rsquo;autres.<\/p>\n<p>L&rsquo;analyse au niveau des <strong>objets d&rsquo;autorisation<\/strong> (ACTVT, BUKRS, KOSTL\u2026) est le seul niveau qui permet d&rsquo;\u00e9liminer r\u00e9ellement les faux positifs \u2014 qui repr\u00e9sentent souvent entre 40 et 60 % des conflits remont\u00e9s par une analyse t-code classique.<\/p>[\/et_pb_text][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb hover_enabled=\u00a0\u00bb0&Prime; global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb sticky_enabled=\u00a0\u00bb0&Prime;]<h3>\u00c9tape 2 \u2014 Analyser les acc\u00e8s SoD dans SAP<\/h3>\n<p>Une fois la matrice construite, l&rsquo;analyse des acc\u00e8s consiste \u00e0 la croiser avec les droits effectivement attribu\u00e9s dans SAP. Voici les points de vigilance essentiels.<\/p>\n<p><strong>Filtrer le bon p\u00e9rim\u00e8tre d&rsquo;analyse. <br \/><\/strong>Contrairement \u00e0 ce qu&rsquo;on pourrait penser, <strong>les comptes d\u00e9sactiv\u00e9s doivent \u00eatre inclus dans l&rsquo;analyse SoD<\/strong>. Si des conflits apparaissent sur des comptes inactifs, cela r\u00e9v\u00e8le que la proc\u00e9dure d&rsquo;archivage est incompl\u00e8te : les droits n&rsquo;ont pas \u00e9t\u00e9 retir\u00e9s au moment de la d\u00e9sactivation. L&rsquo;analyse SoD devient alors un outil de contr\u00f4le de l&rsquo;archivage, permettant d&rsquo;identifier les comptes \u00e0 finaliser. La transaction <strong>SU01<\/strong> permet de les rep\u00e9rer et de les traiter en cons\u00e9quence.<\/p>\n<p>Concernant les comptes techniques, la distinction est plus fine. Les <strong>comptes techniques de type \u00ab\u00a0dialogue\u00a0\u00bb<\/strong> \u2014 o\u00f9 une connexion interactive est possible \u2014 doivent \u00eatre inclus dans l&rsquo;analyse SoD, car un utilisateur peut s&rsquo;y connecter directement et exploiter les droits associ\u00e9s. En revanche, les <strong>comptes de type \u00ab\u00a0System\u00a0\u00bb ou \u00ab\u00a0Communication\u00a0\u00bb<\/strong> (types S et B dans SAP), dont la connexion est strictement non interactive et automatis\u00e9e, pr\u00e9sentent un profil de risque diff\u00e9rent et peuvent \u00eatre trait\u00e9s s\u00e9par\u00e9ment. Cette distinction permet d&rsquo;\u00e9viter \u00e0 la fois les angles morts et les faux positifs inutiles dans vos rapports.<strong><\/strong><\/p>\n<p><strong>Distinguer droits th\u00e9oriques et usage r\u00e9el. <br \/><\/strong>Le croisement des habilitations avec les logs d&rsquo;activit\u00e9 (SM20, STAD) permet d&rsquo;identifier les conflits r\u00e9ellement exploit\u00e9s. Un utilisateur qui dispose de droits incompatibles mais n&rsquo;en a pas utilis\u00e9 un depuis 12 mois pr\u00e9sente un risque d&rsquo;une nature diff\u00e9rente d&rsquo;un utilisateur qui les exerce r\u00e9guli\u00e8rement. Cette distinction est d\u00e9terminante pour prioriser les rem\u00e9diations.<\/p>\n<blockquote>\n<p>\ud83d\udca1 Bonne pratique : avant d&rsquo;impl\u00e9menter toute rem\u00e9diation, simulez son impact sur le p\u00e9rim\u00e8tre d&rsquo;autorisation. Une modification de r\u00f4le peut cr\u00e9er de nouveaux conflits si elle n&rsquo;est pas test\u00e9e en amont. SWAWE RISK int\u00e8gre cette fonctionnalit\u00e9 de simulation pr\u00e9ventive.<\/p>\n<\/blockquote>[\/et_pb_text][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]<h3>\u00c9tape 3 \u2014 Rem\u00e9dier et gouverner les risques identifi\u00e9s<\/h3>\n<p>La rem\u00e9diation SoD repose sur trois leviers principaux :<\/p>\n<p><strong>1. La suppression du conflit :<\/strong> retirer l&rsquo;un des droits incompatibles \u00e0 l&rsquo;utilisateur. C&rsquo;est la solution id\u00e9ale, mais elle n&rsquo;est pas toujours possible sans impacter l&rsquo;activit\u00e9 op\u00e9rationnelle.<\/p>\n<p><strong>2. La d\u00e9rogation document\u00e9e &amp; contr\u00f4le compensatoire :<\/strong> lorsque le conflit est structurellement in\u00e9vitable, formaliser une d\u00e9rogation approuv\u00e9e avec un contr\u00f4le compensatoire (revue p\u00e9riodique par un tiers, alertes automatiques, journalisation renforc\u00e9e). Cette d\u00e9rogation doit \u00eatre dat\u00e9e, sign\u00e9e et tra\u00e7able.<\/p>\n<p><strong>3. La refonte des r\u00f4les SAP :<\/strong> dans certains cas, le conflit r\u00e9v\u00e8le une mauvaise conception du mod\u00e8le de r\u00f4les. Une refonte partielle des r\u00f4les SAP (PFCG) peut r\u00e9soudre plusieurs conflits simultan\u00e9ment de fa\u00e7on p\u00e9renne.<\/p>\n<p>Quelle que soit l&rsquo;approche retenue, <strong>chaque action corrective doit \u00eatre trac\u00e9e <\/strong>avec la date d&rsquo;intervention, le responsable, la justification et le r\u00e9sultat constat\u00e9. C&rsquo;est cette tra\u00e7abilit\u00e9 qui rend votre d\u00e9marche opposable \u00e0 un auditeur.<\/p>[\/et_pb_text][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]<h3>\u00c9tape 4 \u2014 Industrialiser et automatiser la d\u00e9tection<\/h3>\n<p>Une analyse SoD ponctuelle, m\u00eame bien men\u00e9e, ne suffit pas. Les mouvements de personnel, les \u00e9volutions de r\u00f4les et les changements de processus cr\u00e9ent en permanence de nouveaux conflits. La vraie maturit\u00e9 SoD, c&rsquo;est la <strong>d\u00e9tection continue.<\/strong><\/p>\n<p>Les limites de l&rsquo;approche manuelle sont bien connues : les extractions SUIM massives vers Excel g\u00e9n\u00e8rent des erreurs sur les grands volumes, les analyses prennent des jours, et un seul fichier corrompu peut invalider tout un audit.<\/p>\n<p>Une solution de d\u00e9tection automatis\u00e9e doit permettre de : analyser en continu sur l&rsquo;ensemble du p\u00e9rim\u00e8tre SAP (ECC, S\/4HANA, BW\u2026), d\u00e9clencher automatiquement une v\u00e9rification SoD \u00e0 chaque modification de r\u00f4le, produire des rapports exploitables par les managers m\u00e9tiers sans interm\u00e9diaire IT, et conserver l&rsquo;historique complet des analyses et rem\u00e9diations.<\/p>[\/et_pb_text][et_pb_code _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]<!-- ============================================================<!-- [et_pb_line_break_holder] -->     BLOC DIAGNOSTIC SWAWE \u2014 \u00c0 coller dans WordPress (mode HTML)<!-- [et_pb_line_break_holder] -->     Adapter l&rsquo;URL du bouton une fois la page diagnostic en ligne<!-- [et_pb_line_break_holder] -->============================================================ &#8211;><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] --><link href=\"https:\/\/fonts.googleapis.com\/css2?family=Days+One&#038;family=DM+Sans:opsz,wght@9..40,400;9..40,500;9..40,600&#038;display=swap\" rel=\"stylesheet\"><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] --><style><!-- [et_pb_line_break_holder] -->.swawe-diag {<!-- [et_pb_line_break_holder] -->  display: flex;<!-- [et_pb_line_break_holder] -->  align-items: center;<!-- [et_pb_line_break_holder] -->  gap: 2rem;<!-- [et_pb_line_break_holder] -->  background: #004899;<!-- [et_pb_line_break_holder] -->  border-radius: 14px;<!-- [et_pb_line_break_holder] -->  padding: 2rem 2rem 2rem 2.25rem;<!-- [et_pb_line_break_holder] -->  margin: 2.5rem 0;<!-- [et_pb_line_break_holder] -->  flex-wrap: wrap;<!-- [et_pb_line_break_holder] -->  font-family: 'DM Sans', sans-serif;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->\/* Colonne gauche *\/<!-- [et_pb_line_break_holder] -->.swawe-diag__left {<!-- [et_pb_line_break_holder] -->  flex: 1;<!-- [et_pb_line_break_holder] -->  min-width: 220px;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__eyebrow {<!-- [et_pb_line_break_holder] -->  font-size: 0.68rem;<!-- [et_pb_line_break_holder] -->  font-weight: 700;<!-- [et_pb_line_break_holder] -->  text-transform: uppercase;<!-- [et_pb_line_break_holder] -->  letter-spacing: 0.1em;<!-- [et_pb_line_break_holder] -->  color: #ef7e26;<!-- [et_pb_line_break_holder] -->  margin-bottom: 0.6rem;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag .swawe-diag__left h3,<!-- [et_pb_line_break_holder] -->.swawe-diag .swawe-diag__title {<!-- [et_pb_line_break_holder] -->  font-family: 'Days One', sans-serif;<!-- [et_pb_line_break_holder] -->  font-size: 1.25rem;<!-- [et_pb_line_break_holder] -->  color: #ffffff !important;<!-- [et_pb_line_break_holder] -->  line-height: 1.25;<!-- [et_pb_line_break_holder] -->  margin: 0 0 0.65rem 0;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__desc {<!-- [et_pb_line_break_holder] -->  font-size: 0.875rem;<!-- [et_pb_line_break_holder] -->  color: rgba(255, 255, 255, 0.72);<!-- [et_pb_line_break_holder] -->  line-height: 1.65;<!-- [et_pb_line_break_holder] -->  margin: 0 0 1rem 0;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__bullets {<!-- [et_pb_line_break_holder] -->  display: flex;<!-- [et_pb_line_break_holder] -->  flex-wrap: wrap;<!-- [et_pb_line_break_holder] -->  gap: 0.35rem 1rem;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__bullets span {<!-- [et_pb_line_break_holder] -->  font-size: 0.8rem;<!-- [et_pb_line_break_holder] -->  color: #31ade4;<!-- [et_pb_line_break_holder] -->  font-weight: 500;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->\/* Colonne droite *\/<!-- [et_pb_line_break_holder] -->.swawe-diag__right {<!-- [et_pb_line_break_holder] -->  display: flex;<!-- [et_pb_line_break_holder] -->  flex-direction: column;<!-- [et_pb_line_break_holder] -->  align-items: center;<!-- [et_pb_line_break_holder] -->  gap: 1.25rem;<!-- [et_pb_line_break_holder] -->  flex-shrink: 0;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__preview {<!-- [et_pb_line_break_holder] -->  display: flex;<!-- [et_pb_line_break_holder] -->  align-items: center;<!-- [et_pb_line_break_holder] -->  gap: 1rem;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__ring {<!-- [et_pb_line_break_holder] -->  width: 76px;<!-- [et_pb_line_break_holder] -->  height: 76px;<!-- [et_pb_line_break_holder] -->  border-radius: 50%;<!-- [et_pb_line_break_holder] -->  background: rgba(255, 255, 255, 0.1);<!-- [et_pb_line_break_holder] -->  border: 3px solid rgba(255, 255, 255, 0.25);<!-- [et_pb_line_break_holder] -->  display: flex;<!-- [et_pb_line_break_holder] -->  align-items: center;<!-- [et_pb_line_break_holder] -->  justify-content: center;<!-- [et_pb_line_break_holder] -->  flex-shrink: 0;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__ring-inner {<!-- [et_pb_line_break_holder] -->  text-align: center;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__ring-q {<!-- [et_pb_line_break_holder] -->  display: block;<!-- [et_pb_line_break_holder] -->  font-family: 'Days One', sans-serif;<!-- [et_pb_line_break_holder] -->  font-size: 1.8rem;<!-- [et_pb_line_break_holder] -->  color: #ffffff;<!-- [et_pb_line_break_holder] -->  line-height: 1;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__ring-max {<!-- [et_pb_line_break_holder] -->  display: block;<!-- [et_pb_line_break_holder] -->  font-size: 0.6rem;<!-- [et_pb_line_break_holder] -->  color: rgba(255, 255, 255, 0.45);<!-- [et_pb_line_break_holder] -->  margin-top: 0.1rem;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__levels {<!-- [et_pb_line_break_holder] -->  display: flex;<!-- [et_pb_line_break_holder] -->  flex-direction: column;<!-- [et_pb_line_break_holder] -->  gap: 0.3rem;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__level {<!-- [et_pb_line_break_holder] -->  font-size: 0.75rem;<!-- [et_pb_line_break_holder] -->  color: rgba(255, 255, 255, 0.65);<!-- [et_pb_line_break_holder] -->  font-weight: 500;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__btn {<!-- [et_pb_line_break_holder] -->  display: inline-block;<!-- [et_pb_line_break_holder] -->  background: #ef7e26;<!-- [et_pb_line_break_holder] -->  color: #ffffff !important;<!-- [et_pb_line_break_holder] -->  font-family: 'DM Sans', sans-serif;<!-- [et_pb_line_break_holder] -->  font-weight: 700;<!-- [et_pb_line_break_holder] -->  font-size: 0.9rem;<!-- [et_pb_line_break_holder] -->  padding: 0.72rem 1.85rem;<!-- [et_pb_line_break_holder] -->  border-radius: 999px;<!-- [et_pb_line_break_holder] -->  text-decoration: none !important;<!-- [et_pb_line_break_holder] -->  transition: filter 0.2s;<!-- [et_pb_line_break_holder] -->  white-space: nowrap;<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->.swawe-diag__btn:hover {<!-- [et_pb_line_break_holder] -->  filter: brightness(1.1);<!-- [et_pb_line_break_holder] -->}<!-- [et_pb_line_break_holder] --><\/style><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] --><div class=\"swawe-diag\"><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  <div class=\"swawe-diag__left\"><!-- [et_pb_line_break_holder] -->    <div class=\"swawe-diag__eyebrow\">Outil interactif gratuit<\/div><!-- [et_pb_line_break_holder] -->    <h3 class=\"swawe-diag__title\" style=\"color:#ffffff !important;\">O\u00f9 en \u00eates-vous sur votre maturit\u00e9 SoD\u00a0?<\/h3><!-- [et_pb_line_break_holder] -->    <pee class=\"swawe-diag__desc\"><!-- [et_pb_line_break_holder] -->      R\u00e9pondez \u00e0 19 questions (Oui \/ Partiel \/ Non) et obtenez en 5 minutes<!-- [et_pb_line_break_holder] -->      un score de maturit\u00e9 personnalis\u00e9 avec vos priorit\u00e9s d&rsquo;action concr\u00e8tes.<!-- [et_pb_line_break_holder] -->    <\/pee><!-- [et_pb_line_break_holder] -->    <div class=\"swawe-diag__bullets\"><!-- [et_pb_line_break_holder] -->      <span>\u2713 19 questions cibl\u00e9es<\/span><!-- [et_pb_line_break_holder] -->      <span>\u2713 Score sur 38 points<\/span><!-- [et_pb_line_break_holder] -->      <span>\u2713 Priorit\u00e9s personnalis\u00e9es<\/span><!-- [et_pb_line_break_holder] -->      <span>\u2713 100\u00a0% gratuit<\/span><!-- [et_pb_line_break_holder] -->    <\/div><!-- [et_pb_line_break_holder] -->  <\/div><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] -->  <div class=\"swawe-diag__right\"><!-- [et_pb_line_break_holder] -->    <div class=\"swawe-diag__preview\"><!-- [et_pb_line_break_holder] -->      <div class=\"swawe-diag__ring\"><!-- [et_pb_line_break_holder] -->        <div class=\"swawe-diag__ring-inner\"><!-- [et_pb_line_break_holder] -->          <span class=\"swawe-diag__ring-q\">?<\/span><!-- [et_pb_line_break_holder] -->          <span class=\"swawe-diag__ring-max\">\/ 38 pts<\/span><!-- [et_pb_line_break_holder] -->        <\/div><!-- [et_pb_line_break_holder] -->      <\/div><!-- [et_pb_line_break_holder] -->      <div class=\"swawe-diag__levels\"><!-- [et_pb_line_break_holder] -->        <div class=\"swawe-diag__level\">\ud83d\udfe2 Optimis\u00e9<\/div><!-- [et_pb_line_break_holder] -->        <div class=\"swawe-diag__level\">\ud83d\udd35 Avanc\u00e9<\/div><!-- [et_pb_line_break_holder] -->        <div class=\"swawe-diag__level\">\ud83d\udfe0 En progression<\/div><!-- [et_pb_line_break_holder] -->        <div class=\"swawe-diag__level\">\ud83d\udd34 D\u00e9butant<\/div><!-- [et_pb_line_break_holder] -->      <\/div><!-- [et_pb_line_break_holder] -->    <\/div><!-- [et_pb_line_break_holder] -->    <a href=\"https:\/\/swawe.fr\/checklist-sod-sap-detecter-et-piloter-les-conflits-acces\/\" class=\"swawe-diag__btn\"><!-- [et_pb_line_break_holder] -->      Faire le diagnostic \u2192<!-- [et_pb_line_break_holder] -->    <\/a><!-- [et_pb_line_break_holder] -->  <\/div><!-- [et_pb_line_break_holder] --><!-- [et_pb_line_break_holder] --><\/div>[\/et_pb_code][\/et_pb_column][\/et_pb_row][et_pb_row _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb][et_pb_column type=\u00a0\u00bb4_4&Prime; _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb][et_pb_text _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]<h3>FAQ : Tout comprendre sur les conflits SoD SAP[\/et_pb_text][et_pb_accordion open_toggle_text_color=\u00a0\u00bb#0B0D1D\u00a0\u00bb closed_toggle_text_color=\u00a0\u00bb#0B0D1D\u00a0\u00bb closed_toggle_background_color=\u00a0\u00bb#f2f2fa\u00a0\u00bb icon_color=\u00a0\u00bb#EF7E26&Prime; _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb toggle_text_color=\u00a0\u00bb#0B0D1D\u00a0\u00bb border_radii=\u00a0\u00bbon|10px|10px|10px|10px\u00a0\u00bb border_width_all=\u00a0\u00bb2px\u00a0\u00bb border_color_all=\u00a0\u00bb#004899&Prime; global_colors_info=\u00a0\u00bb{}\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb][et_pb_accordion_item title=\u00a0\u00bb1. Qu&rsquo;est-ce qu&rsquo;un conflit SoD dans SAP ?\u00a0\u00bb open=\u00a0\u00bbon\u00a0\u00bb _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb toggle_level=\u00a0\u00bbh4&Prime; toggle_font_size=\u00a0\u00bb18px\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb]Un conflit SoD survient lorsqu&rsquo;un m\u00eame utilisateur d\u00e9tient des droits permettant de r\u00e9aliser deux actions incompatibles au sein d&rsquo;un m\u00eame processus. Ces conflits peuvent \u00eatre th\u00e9oriques (droits attribu\u00e9s mais non exerc\u00e9s conjointement) ou av\u00e9r\u00e9s (effectivement exerc\u00e9s).[\/et_pb_accordion_item][et_pb_accordion_item title=\u00a0\u00bb2. Comment d\u00e9tecter les conflits SoD dans SAP ?\u00a0\u00bb _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb toggle_level=\u00a0\u00bbh4&Prime; toggle_font_size=\u00a0\u00bb18px\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb open=\u00a0\u00bboff\u00a0\u00bb]Via trois niveaux : analyse des t-codes (basique), analyse des objets d&rsquo;autorisation SAP (niveau fin, \u00e9limine les faux positifs), et croisement avec les logs d&rsquo;activit\u00e9 (SM20, STAD) pour distinguer risques th\u00e9oriques et risques actifs.[\/et_pb_accordion_item][et_pb_accordion_item title=\u00a0\u00bb3. Quelle est la diff\u00e9rence entre un risque SoD th\u00e9orique et av\u00e9r\u00e9 ?\u00a0\u00bb _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb toggle_level=\u00a0\u00bbh4&Prime; toggle_font_size=\u00a0\u00bb18px\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb open=\u00a0\u00bboff\u00a0\u00bb]Th\u00e9orique : l&rsquo;utilisateur a les droits mais ne les a pas exerc\u00e9s conjointement. Av\u00e9r\u00e9 : les deux actions incompatibles ont \u00e9t\u00e9 r\u00e9ellement ex\u00e9cut\u00e9es. Cette distinction est d\u00e9terminante pour prioriser les rem\u00e9diations.[\/et_pb_accordion_item][et_pb_accordion_item title=\u00a0\u00bb4. Combien de temps faut-il pour r\u00e9aliser une analyse SoD sur SAP ?\u00a0\u00bb _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb toggle_level=\u00a0\u00bbh4&Prime; toggle_font_size=\u00a0\u00bb18px\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb open=\u00a0\u00bboff\u00a0\u00bb]Manuellement : plusieurs jours \u00e0 plusieurs semaines pour 1 000 utilisateurs. Avec SWAWE RISK : moins de 24 heures sur 10 000+ utilisateurs, avec une pr\u00e9cision accrue gr\u00e2ce \u00e0 l&rsquo;analyse au niveau des objets d&rsquo;autorisation.[\/et_pb_accordion_item][et_pb_accordion_item title=\u00a0\u00bb5. Qu&rsquo;est-ce qu&rsquo;une matrice SoD et comment la construire ?\u00a0\u00bb _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb toggle_level=\u00a0\u00bbh4&Prime; toggle_font_size=\u00a0\u00bb18px\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb open=\u00a0\u00bboff\u00a0\u00bb]Un r\u00e9f\u00e9rentiel listant les combinaisons de droits SAP incompatibles. Construction : cartographier les processus critiques, identifier les couples de transactions incompatibles, descendre au niveau des objets d&rsquo;autorisation, attribuer une criticit\u00e9, valider avec les m\u00e9tiers ET le contr\u00f4le interne.[\/et_pb_accordion_item][et_pb_accordion_item title=\u00a0\u00bb6. Comment g\u00e9rer un conflit SoD in\u00e9vitable ?\u00a0\u00bb _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb toggle_level=\u00a0\u00bbh4&Prime; toggle_font_size=\u00a0\u00bb18px\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb open=\u00a0\u00bboff\u00a0\u00bb]Formaliser une d\u00e9rogation document\u00e9e avec contr\u00f4le compensatoire (revue par un tiers, alertes, journalisation renforc\u00e9e). La d\u00e9rogation doit \u00eatre approuv\u00e9e, dat\u00e9e et tra\u00e7able. L&rsquo;inaction silencieuse n&rsquo;est jamais acceptable.[\/et_pb_accordion_item][et_pb_accordion_item title=\u00a0\u00bb7. Quelle est la fr\u00e9quence recommand\u00e9e pour une revue SoD ?\u00a0\u00bb _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb toggle_level=\u00a0\u00bbh4&Prime; toggle_font_size=\u00a0\u00bb18px\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb open=\u00a0\u00bboff\u00a0\u00bb]Minimum semestrielle. Pour les organisations soumises \u00e0 SOX, Sapin II ou RGPD : trimestrielle ou surveillance continue. SWAWE permet une d\u00e9tection en temps r\u00e9el \u00e0 chaque modification de r\u00f4le.[\/et_pb_accordion_item][et_pb_accordion_item title=\u00a0\u00bb8. Quels sont les outils SAP natifs pour analyser les SoD ?\u00a0\u00bb _builder_version=\u00a0\u00bb4.27.4&Prime; _module_preset=\u00a0\u00bbdefault\u00a0\u00bb global_colors_info=\u00a0\u00bb{}\u00a0\u00bb toggle_level=\u00a0\u00bbh4&Prime; toggle_font_size=\u00a0\u00bb18px\u00a0\u00bb theme_builder_area=\u00a0\u00bbpost_content\u00a0\u00bb open=\u00a0\u00bboff\u00a0\u00bb]SUIM, SU01, PFCG, SE16\/SE16N, SM20, STAD. Puissants mais limit\u00e9s pour les grands volumes : pas de croisement automatique des r\u00e8gles d&rsquo;incompatibilit\u00e9, et les extractions Excel deviennent ing\u00e9rables au-del\u00e0 de quelques centaines d&rsquo;utilisateurs.[\/et_pb_accordion_item][\/et_pb_accordion][\/et_pb_column][\/et_pb_row][\/et_pb_section]\n","protected":false},"excerpt":{"rendered":"<p>D\u00e9tecter les conflits de S\u00e9paration des T\u00e2ches (SoD) dans SAP est l&rsquo;un des enjeux les plus critiques de la gouvernance des acc\u00e8s. Pourtant, beaucoup d&rsquo;organisations naviguent encore \u00e0 vue \u2014 entre matrices Excel obsol\u00e8tes, faux positifs en masse et revues annuelles insuffisantes. Voici une d\u00e9marche structur\u00e9e, en 4 \u00e9tapes, pour passer d&rsquo;une gestion r\u00e9active \u00e0 [&hellip;]<\/p>\n","protected":false},"author":8,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"on","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[14],"tags":[],"class_list":["post-2505","post","type-post","status-publish","format-standard","hentry","category-separation-des-taches-sod-analyse-de-risque"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Conflits SoD SAP : comment \u00e9valuer et piloter vos risques d&#039;acc\u00e8s<\/title>\n<meta name=\"description\" content=\"Conflits SoD dans SAP : d\u00e9couvrez comment d\u00e9tecter, analyser et piloter vos risques d&#039;acc\u00e8s en continu. Diagnostic gratuit\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/swawe.fr\/en\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Conflits SoD SAP : comment \u00e9valuer et piloter vos risques d&#039;acc\u00e8s\" \/>\n<meta property=\"og:description\" content=\"Conflits SoD dans SAP : d\u00e9couvrez comment d\u00e9tecter, analyser et piloter vos risques d&#039;acc\u00e8s en continu. Diagnostic gratuit\" \/>\n<meta property=\"og:url\" content=\"https:\/\/swawe.fr\/en\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/\" \/>\n<meta property=\"og:site_name\" content=\"Swawe\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-04T12:24:27+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-04T12:26:35+00:00\" \/>\n<meta name=\"author\" content=\"Christophe Bizot\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Christophe Bizot\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/swawe.fr\\\/separation-des-taches-sod-analyse-de-risque\\\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/swawe.fr\\\/separation-des-taches-sod-analyse-de-risque\\\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\\\/\"},\"author\":{\"name\":\"Christophe Bizot\",\"@id\":\"https:\\\/\\\/swawe.fr\\\/#\\\/schema\\\/person\\\/a430925d824c740d4ed7565873b872b4\"},\"headline\":\"Conflits SoD dans SAP : comment \u00e9valuer et piloter vos risques d&rsquo;acc\u00e8s\",\"datePublished\":\"2026-06-04T12:24:27+00:00\",\"dateModified\":\"2026-06-04T12:26:35+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/swawe.fr\\\/separation-des-taches-sod-analyse-de-risque\\\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\\\/\"},\"wordCount\":2470,\"articleSection\":[\"S\u00e9paration des T\u00e2ches (SoD) &amp; Analyse de Risque\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/swawe.fr\\\/separation-des-taches-sod-analyse-de-risque\\\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\\\/\",\"url\":\"https:\\\/\\\/swawe.fr\\\/separation-des-taches-sod-analyse-de-risque\\\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\\\/\",\"name\":\"Conflits SoD SAP : comment \u00e9valuer et piloter vos risques d'acc\u00e8s\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/swawe.fr\\\/#website\"},\"datePublished\":\"2026-06-04T12:24:27+00:00\",\"dateModified\":\"2026-06-04T12:26:35+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/swawe.fr\\\/#\\\/schema\\\/person\\\/a430925d824c740d4ed7565873b872b4\"},\"description\":\"Conflits SoD dans SAP : d\u00e9couvrez comment d\u00e9tecter, analyser et piloter vos risques d'acc\u00e8s en continu. Diagnostic gratuit\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/swawe.fr\\\/separation-des-taches-sod-analyse-de-risque\\\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/swawe.fr\\\/separation-des-taches-sod-analyse-de-risque\\\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/swawe.fr\\\/separation-des-taches-sod-analyse-de-risque\\\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\\\/\\\/swawe.fr\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Conflits SoD dans SAP : comment \u00e9valuer et piloter vos risques d&rsquo;acc\u00e8s\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/swawe.fr\\\/#website\",\"url\":\"https:\\\/\\\/swawe.fr\\\/\",\"name\":\"Swawe\",\"description\":\"Your Compliance Companion\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/swawe.fr\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/swawe.fr\\\/#\\\/schema\\\/person\\\/a430925d824c740d4ed7565873b872b4\",\"name\":\"Christophe Bizot\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/36b893283538a191d5f109e0963a0a9dcdc8d16e1603c81c06d9fe77fde3b422?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/36b893283538a191d5f109e0963a0a9dcdc8d16e1603c81c06d9fe77fde3b422?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/36b893283538a191d5f109e0963a0a9dcdc8d16e1603c81c06d9fe77fde3b422?s=96&d=mm&r=g\",\"caption\":\"Christophe Bizot\"},\"url\":\"https:\\\/\\\/swawe.fr\\\/en\\\/author\\\/christophe\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Conflits SoD SAP : comment \u00e9valuer et piloter vos risques d'acc\u00e8s","description":"Conflits SoD dans SAP : d\u00e9couvrez comment d\u00e9tecter, analyser et piloter vos risques d'acc\u00e8s en continu. Diagnostic gratuit","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/swawe.fr\/en\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/","og_locale":"en_US","og_type":"article","og_title":"Conflits SoD SAP : comment \u00e9valuer et piloter vos risques d'acc\u00e8s","og_description":"Conflits SoD dans SAP : d\u00e9couvrez comment d\u00e9tecter, analyser et piloter vos risques d'acc\u00e8s en continu. Diagnostic gratuit","og_url":"https:\/\/swawe.fr\/en\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/","og_site_name":"Swawe","article_published_time":"2026-06-04T12:24:27+00:00","article_modified_time":"2026-06-04T12:26:35+00:00","author":"Christophe Bizot","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Christophe Bizot","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/swawe.fr\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/#article","isPartOf":{"@id":"https:\/\/swawe.fr\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/"},"author":{"name":"Christophe Bizot","@id":"https:\/\/swawe.fr\/#\/schema\/person\/a430925d824c740d4ed7565873b872b4"},"headline":"Conflits SoD dans SAP : comment \u00e9valuer et piloter vos risques d&rsquo;acc\u00e8s","datePublished":"2026-06-04T12:24:27+00:00","dateModified":"2026-06-04T12:26:35+00:00","mainEntityOfPage":{"@id":"https:\/\/swawe.fr\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/"},"wordCount":2470,"articleSection":["S\u00e9paration des T\u00e2ches (SoD) &amp; Analyse de Risque"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/swawe.fr\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/","url":"https:\/\/swawe.fr\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/","name":"Conflits SoD SAP : comment \u00e9valuer et piloter vos risques d'acc\u00e8s","isPartOf":{"@id":"https:\/\/swawe.fr\/#website"},"datePublished":"2026-06-04T12:24:27+00:00","dateModified":"2026-06-04T12:26:35+00:00","author":{"@id":"https:\/\/swawe.fr\/#\/schema\/person\/a430925d824c740d4ed7565873b872b4"},"description":"Conflits SoD dans SAP : d\u00e9couvrez comment d\u00e9tecter, analyser et piloter vos risques d'acc\u00e8s en continu. Diagnostic gratuit","breadcrumb":{"@id":"https:\/\/swawe.fr\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/swawe.fr\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/swawe.fr\/separation-des-taches-sod-analyse-de-risque\/conflits-sod-dans-sap-comment-evaluer-et-piloter-vos-risques-acces\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/swawe.fr\/"},{"@type":"ListItem","position":2,"name":"Conflits SoD dans SAP : comment \u00e9valuer et piloter vos risques d&rsquo;acc\u00e8s"}]},{"@type":"WebSite","@id":"https:\/\/swawe.fr\/#website","url":"https:\/\/swawe.fr\/","name":"Swawe","description":"Your Compliance Companion","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/swawe.fr\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/swawe.fr\/#\/schema\/person\/a430925d824c740d4ed7565873b872b4","name":"Christophe Bizot","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/36b893283538a191d5f109e0963a0a9dcdc8d16e1603c81c06d9fe77fde3b422?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/36b893283538a191d5f109e0963a0a9dcdc8d16e1603c81c06d9fe77fde3b422?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/36b893283538a191d5f109e0963a0a9dcdc8d16e1603c81c06d9fe77fde3b422?s=96&d=mm&r=g","caption":"Christophe Bizot"},"url":"https:\/\/swawe.fr\/en\/author\/christophe\/"}]}},"_links":{"self":[{"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/posts\/2505","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/comments?post=2505"}],"version-history":[{"count":13,"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/posts\/2505\/revisions"}],"predecessor-version":[{"id":2536,"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/posts\/2505\/revisions\/2536"}],"wp:attachment":[{"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/media?parent=2505"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/categories?post=2505"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/swawe.fr\/en\/wp-json\/wp\/v2\/tags?post=2505"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}