Why this assessment exists

Indirect access is the longest-running unresolved risk in SAP licensing. Post-Diageo (2017) and AB InBev (2018), SAP formalised the Document Principle — but named-user indirect access still exists, still gets audited, and still produces multi-million pound invoices for enterprises that haven't mapped their integrations.

This assessment diagnoses your indirect access posture — where your exposure sits, whether you are on named-user or Document Principle pricing for each integration, and what to control before the next audit. It's built on the pattern of wins and losses we've seen across 80+ SAP indirect access engagements since 2018.

Your progress 0% complete
Question 1 of 8

How complete is your SAP third-party integration inventory?

Every non-SAP system that reads or writes data into SAP — RPA, portals, e-commerce, EDI, MDM, BI, external users — needs to be on the list.

Question 2 of 8

Do you know which user-licensing model each integration falls under?

Named-user indirect, Digital Access (Document Principle), or legitimately neither. Default assumption in SAP's favour is named-user (usually more expensive).

Question 3 of 8

How clean is your contract's indirect access language?

Standard SAP GTCs have shifted materially post-Diageo. First-generation contracts and early S/4HANA contracts have particularly problematic language.

Question 4 of 8

Have you had an SAP audit or measurement in the last 24 months?

Post-audit posture matters: resolved with concessions, ongoing dispute, or audit pending.

Question 5 of 8

How much do you know about the Diageo and AB InBev precedents?

These cases set the contemporary Document Principle framework. Understanding them shapes both your defence and your DAAP negotiation posture.

Question 6 of 8

Do you measure named-user access from third-party systems?

Even where Digital Access applies, named-user indirect usage often coexists. Separate measurement.

Question 7 of 8

What is your negotiating posture if SAP raises indirect access at renewal?

Pre-prepared defence beats reactive defence.

Question 8 of 8

Do you have independent advisory support for indirect access?

Indirect access is a legal + licensing domain — generalist advisors often miss the contract and precedent angle.

0 of 8 answered

What happens next

When you click View your results, we'll ask for your name, work email, and company. We only accept corporate email addresses — no Gmail, Outlook.com, or other free providers — because this report is written for enterprise buyers and we use the domain to tailor the recommendations. Your email is never sold, shared, or used for anything other than delivering your report and (if you opt in) related SAP research.

Once you submit, you'll be redirected to a personalised report showing your overall score, risk band, the specific findings for each question where you scored 2 or higher, and the three most important actions to take before you sit down with SAP.

Prefer to walk through this with an expert?

Our SAP practice will run the full diagnostic with you in a 2-hour working session.
Book a session →