How to Deal with the Dangers Posed By the "sa" Account for Microsoft Dynamics GP

Microsoft Dynamics GP has long required the ‘sa' (system administrator) account to perform several tasks, including user management, maintenance and installation of third party products.   It is also widely used as a "do everything" User ID by companies and consultants.

Use of the ‘sa' account creates audit risk in both the IT department and the Finance department.  A user with access to this account may make changes to financial data and eradicate any trace of the change that was made.  Additionally, users without appropriate SQL training may modify SQL objects or settings that impact data and performance.

...

Requires FREE Membership to View

Login
Become a Member Joining MSDynamicsWorld.com gives you free, unlimited access to news, analysis, white papers, case studies, product brochures, and more, and it’s all FREE. You’ll also receive periodic email newsletters with the latest relevant articles and content updates.
About Andy Snook

Andy is Certified in Risk and Information Systems Controls (CRISC) as well ascertified in Microsoft Dynamics and SAP.  

He has been designing audit and compliance solutions for over 13 years and has assisted with compliance projects at more than 100 companies. Under hisleadership, Fastpath has grown to support more than 1,000 companies in over 30 different countries and is recognized as an Industry Leader by the Institute of Internal Auditors. 

Prior to his time at Fastpath, Andy was a financial systems implementation consultant for Microsoft Dynamics and an SAP management consultant with Ernst & Young. He graduated from the University of Notre Dame with degrees in Economics and Computer Applications.

Read full bio...

minivan