For accessing SAP each and evary individual should have SAP login and its user id.For user id there are many parameters like authorizations because every user should not each and evry application or tcode so we need to restrict by authorizations.And others are profiles,user groups,validation,etc.