SAP Cloud Identity Access Governance (IAG) extends SAP’s governance capabilities into hybrid and cloud landscapes, complementing - and in some scenarios modernizing - processes traditionally implemented in SAP Access Control (GRC). This instructor-led session walks through IAG architecture and the configuration building blocks needed to get value quickly: master data and repository setup, connecting target systems, synchronizing repository objects, and designing roles and access requests. You will see guided demonstrations of role design and simulations, workflow and custom field concepts, and the request lifecycle. The session concludes with a practical view of periodic reviews and privileged access governance concepts, supported by take-home exercises.

By the end of this session, you will be able to:

• Explain IAG architecture and positioning relative to SAP Access Control (GRC).

• Identify key integration touchpoints (including identity and provisioning patterns commonly used with IAS/IPS).

• Configure foundational master data and repository synchronization required for risk analysis and access requests.

• Demonstrate role design concepts, run simulations, and understand access request workflow configuration.

• Describe how IAG supports periodic reviews and privileged access governance at a high level.