In almost all places, auditors look for some critical access that user may have. In a standard environment, these reports can be derived using the transaction code SUIM. But they are not always comprehensive because most auditors look for only limited set of critical accesses thereby leaving a possibility of neglecting some really critical accesses. This reporting tree will give a comprehensive list of reports covering almost every critical area in an SAP environment.