USER ACCESS CONTROLS

Authorizations Insight for JD Edwards

Product Summary HIGHLIGHTS

• Comprehensive SoD review
Approva’s Authorizations Insight for JD Edwards automatically detects segregation • Proactive alerts
of duties (SoD) conflicts and inappropriate access rights enabling you to improve • User-friendly web-based interface
• Audit trail for changes in
the quality of your control and compliance efforts while reducing cost. business rules
• Sensitive access monitoring
User access controls • Detailed, Excel-ready reports
Finance Business IT Internal &
Managers Managers Managers External Auditors are fundamental to an • Easy to manage rulebooks
! ! ! !
organization’s overall • Out-of-the-box rules
IT security program. • Links to controls documentation
Ensuring adequate • Cross-application monitoring
Users Authorizations Insight Reports &
Alerts controls is time
Roles • SoD Rules
Access consuming. Approva’s
• Sensitive Access Rules Conflicts
Applications Authorizations HOSTED CONTROLS PILOT
• Super User Rules Sensitive
Access Insight uses a rules- Take advantage of our hosted
Pages
• Cross-App Rules
Super Users
based approach to controls pilot and evaluate
eliminate and prevent Authorizations Insight using
segregation of duties production data from your own JD
JD Edwards
Oracle SAP PeopleSoft Other violations within Edwards environment. Our hosted
JD Edwards. controls pilot requires minimal
customer resources and gives
you the unique opportunity to see
Product Overview
how the product works in your IT
Approva’s Authorizations Insight for JD Edwards uses pre-defined, configurable business environment before you actually
rules to uncover user access risks. Proactive reporting and e-mail alerts ensure that the buy it.
appropriate managers are notified of new issues.

Comprehensive Controls Analysis:

Authorizations Insight reviews user access rights at the role and application level. When
inappropriate access rights or conflicts of interest are found, based on your business
rules, Approva automatically logs the violation, along with all of the relevant details.
Violations are color coded, so cleanup efforts can focus on the most critical violations.

Prevention of Sensitive Access and SoD Issues:

Authorizations Insight detects sensitive access and segregation of duties issues quickly
based on your business rules. Business managers automatically receive all relevant
details for each violation, so that they can proactively curtail inappropriate user access
rights in a matter of hours, instead of weeks or months later.

Continuous Monitoring Across ERP Environments:

Monitoring is performed via a non-invasive, ERP independent approach, so that all
of your important information systems can be included as you expand your controls
monitoring beyond JD Edwards to Oracle, PeopleSoft, SAP, Hyperion, and custom or
legacy environments.
 Authorizations Insight forJD Edwards

Approva’s Authorizations Insight for JD Edwards enables you to quickly and easily detect, and then cost-effectively
eliminate segregation of duties violations and sensitive access issues.

Product Capabilities
Library of Pre-Defined Controls: A rich library of
pre-defined and customizable business rules, reports
and alerts for SoD conflicts map to the lowest levels
of JD Edwards authorizations, including JD Edwards
users, roles, and applications. Approva’s user friendly
approach enables business users to build and man-
age their own rules without deep JD Edwards techni-
cal expertise or assistance from IT administrators.
Proactive SoD Analysis: Authorizations Insight the user, the role, the business rule that was broken,
automates controls monitoring and proactively alerts
users when violations occur. Analysis is detailed, and
includes users, roles, applications, and all of the rel-
evant business rules. When new issues are uncov-
ered, business managers are notified immediately
via e-mail.
Complete Audit Trail: Authorizations Insight docu-
ments all remediation activities to satisfy regulatory,
audit and security requirements. Reports and audit
trails are stored for easy retrieval. Rule definitions
are saved along with the violations.
Business Friendly Reporting: Reports are auto-
matically delivered to key compliance stakeholders.
Each report includes highly relevant information on
and the reason for the violation. Using the rule prior-
ity, the rule description, the control objective, and the
other information provided in the report, the end user
can quickly make an informed decision on the most
appropriate course of action.

Benefits Related Solutions

Reduced burden on IT staff: Eliminate the time your IT • Managing Segregation of Duties Controls
security staff spends running manual reports. Automated • Role Re-Design Initiatives
SoD monitoring identifies violations when they occur and • New ERP Deployments
alerts appropriate managers. • Sensitive Transaction Monitoring

Reduced audit preparation costs: Reduce the time and Typical Users
disruption of preparing for your audits. Reports and audit • IT Security Managers
trails are stored for easy retrieval, including user access • Business Managers
rule definitions, uncovered user and role violations, and • Internal Auditors
remediation actions. • External Auditors
• Control Owners
Faster regulatory compliance: Meet aggressive deadlines • Executive Management
for complying with regulatory mandates such as Sarbanes
Oxley Section 404. With Authorizations Insight even complex
organizations can clean up SoD violations within a matter of
weeks.

Approva is the leading provider of continuous controls monitoring and audit software. We enable business,
finance, IT and audit professionals to automate the on-demand testing, closed-loop remediation and
continuous, exception-based monitoring of controls within and across their business systems.

ADDRESS PHONE WEBSITE

Approva Corporation 1950 Roland Clarke Place, Suite 300 Reston, VA 20191 703.956.8300 www.approva.net

© 2009 Approva Corporation. All rights reserved.