What is it — and why PUPM drives cost control in SAP Public Cloud programs
If you’re planning SAP Public Cloud (for example SAP S/4HANA Cloud, Public Edition), you’ll quickly run into a term that sounds like billing — but actually shapes your entire operating model: PUPM.
PUPM stands for Per User Per Month. Sounds simple: you pay per user, per month. In real projects, PUPM is more than a price metric. It’s a steering model that directly impacts how you define personas, assign roles, control authorizations, and forecast cost.
That’s why many Public Cloud programs don’t fail on technology first — they struggle on PUPM governance: if your user model isn’t clean, you get role creep, too many high-tier users, and costs nobody can defend at renewal time.
What is PUPM?
PUPM means Per User Per Month — a billing model where Public Cloud usage rights are planned and purchased as a monthly fee per user.
The important part: in Public Cloud, the monthly amount usually depends on user types / access depth (e.g., “Standard”, “Advanced”, “Self-Service/Light” — depending on the product and contract structure). PUPM is the billing unit, but control comes from:
-
User type / access depth
-
Role packages
-
Governance for changes (upgrades, exceptions)
Snippet-ready definition:
PUPM (Per User Per Month) is a user-based billing model in SAP Public Cloud where cost is charged per user and month, typically driven by user types, role packages, and upgrade governance.
PUPM is not the same as “user count”
A common misconception: “We have 1,000 users, so we pay 1,000 × PUPM.” In reality:
-
User count = number of people with access
-
PUPM cost = number of users by user type × monthly price × term
Your main lever is not just “how many users”, but:
-
which users get which user type
-
how stable your role model stays over time
Memorable line:
PUPM doesn’t just count people. PUPM prices access depth — and access depth tends to grow unless you control it.
Why does PUPM matter for cost and compliance?
Because PUPM is the Public Cloud equivalent of “permission + cost control.”
If you know how many users need which access depth, forecasting becomes simple. If you don’t, PUPM becomes a recurring budget fight.
A strong PUPM setup is built on personas, not job titles:
-
AP clerk
-
approver
-
warehouse user
-
planner
-
controller
-
business key user
-
admin / IT ops
Personas connect business reality to authorizations.
Every extra authorization can implicitly mean: “this user now needs a higher user type.” Without rules, you get role creep and cost growth without business value.
Organizations must often be able to explain:
-
who has which roles
-
why a certain user type is justified
-
who approved an upgrade
PUPM pushes you to operationalize these answers early.
PUPM vs FUE vs Named User: the clean distinction
If you don’t separate PUPM, FUE, and Named User, two things happen: forecasts become unreliable, and permissions grow without cost steering.
PUPM is a pricing model: you pay per user per month, typically per user type/access depth.
-
Typical use: SAP Public Cloud
-
Control levers: user types + role packages + upgrade governance
-
Main risk: too many high-tier users (“upgrade for convenience”)
One-liner: PUPM = monthly price per user (by access depth).
FUE is an equivalency / weighting model that translates personas into a comparable unit.
-
Typical use: SAP Private Cloud / Private Edition
-
Control levers: persona catalog + role packages + 12–36 month forecast
-
Main risk: drift (calculated once, never maintained)
One-liner: FUE = weighted usage as a planning/negotiation unit.
Named User is a usage right per person, often with categories based on authorization depth.
-
Typical use: SAP on-prem (classic perpetual) and hybrid landscapes
-
Control levers: joiner/mover/leaver discipline + role compliance
-
Main risk: role creep + weak evidence → audit risk
One-liner: Named User = person-based usage rights.
| Model | What it is | Typical use | How you steer it | Main risk |
|---|---|---|---|---|
| PUPM | price per user/month | Public Cloud | user mix + upgrades | high-tier inflation |
| FUE | equivalency/weighting | Private Cloud | personas → forecast | forecast drift |
| Named User | usage right per person | On-prem | identity + roles | role creep / audit |
Typical PUPM pitfalls
“Give everyone the higher user type.” Convenient now, expensive forever.
“Key user = high tier.” Key user is a project role; without post–go-live downgrade, you overpay.
“We define 50 personas.” Too many exceptions kills control. Aim for 10–15.
“No one reviews the user mix.” You discover the drift at renewal — too late.
How to implement PUPM pragmatically
A setup that works fast and scales:
-
Define 10–15 personas
Focus on process reality, not org charts. -
Create one approved role set per persona
Standard packages, minimal variations. -
Assign a target user type per persona
This is your default—not your maximum. -
Rule: “new role → PUPM check”
Every exception triggers a quick question: does the user type change? Who approves? -
Forecast 12–36 months
Rollout waves, growth scenario, seasonal peaks. -
Review cadence
Monthly (dynamic) or quarterly (stable):-
user mix
-
outliers
-
actions (downgrade, cleanup, training)
-
Practical example: a rollout setup
A company starts SAP S/4HANA Cloud, Public Edition for Finance & Procurement in Germany, later expanding to AT/CH (or similarly: initial US region, then more states). Total: 600 planned users.
12 personas, for example:
-
AP clerk (200)
-
approver (180)
-
procurement specialist (90)
-
controller (60)
-
warehouse user (40)
-
business key user (20)
-
admin/IT ops (10)
-
AP clerk: Standard
-
approver: Self-service/light (where possible)
-
procurement specialist: Standard/Advanced (by process scope)
-
controller: Advanced
-
key user: temporarily advanced, mandatory post–go-live downgrade review
-
admin: Advanced
After 3 months:
-
45 approvers were upgraded “for convenience”
-
12 key users were not downgraded after go-live
Actions:
-
return approvers to light profiles + tighten role packages
-
time-box key-user upgrades with a rollback date
Takeaway: PUPM stays predictable when upgrades are exceptions—not defaults.
Best practice: manage PUPM as an operating model
To scale without cost creep:
-
Persona catalog: approved personas + target user type
-
Approved role sets: standard role packages per persona
-
Change control: upgrades only with quick approval (owner + reason + timebox)
-
Cost attribution: persona/team → cost center (light showback)
-
Review cadence: user mix, outliers, actions
This turns PUPM from “licensing stress” into a controllable model.
FAQ
PUPM stands for Per User Per Month and describes a user-based monthly billing model, typically driven by user types/access depth.
No. PUPM is also governance, because role changes and upgrades change the user mix and therefore cost.
PUPM is a Public Cloud billing model per user/month and user type. FUE is a Private Cloud equivalency unit that weights personas to support forecasting and negotiation.
Named User is a person-based usage right (often on-prem/perpetual). PUPM is monthly Public Cloud billing—typically along user types.
Personas, approved role sets, “new role → PUPM check,” and a fixed review cadence.
Typically 10–15 personas cover 80–90% of usage. More increases complexity without real value.
Conclusion
PUPM (Per User Per Month) sounds like simple billing, but in SAP Public Cloud it’s a core steering model. If you define personas cleanly, standardize role packages, and treat upgrades as approved exceptions, your user mix stays stable—and PUPM stays predictable. And if you clearly distinguish PUPM from FUE (private cloud weighting model) and Named User (classic on-prem principle), you get forecasts Finance trusts and governance IT can actually live with.
SAP ERP Cloud with SAP S/4HANA
Accelerate your ERP modernization with SAP S/4HANA Cloud. This foundation enables scalable integrations, Clean Core strategies, and transparent license governance.
SAP S/4HANA Cloud Public Edition
Embrace the agile benefits of SAP’s Public Cloud ERP. Ideal for standardized processes, rapid innovation cycles, and API-driven integration landscapes.
SAP S/4HANA Cloud Private Edition
Retain configuration flexibility and process control with the Private Cloud. Perfect for complex landscapes, tailored integration requirements, and strong governance.
SAP License Consulting
Get expert guidance on cloud licensing, compliance and cost control. We cover SAP licenses, Digital Access, named user strategies, and PUPM models.
SAP Integration Suite
Connect SAP and non‑SAP systems with APIs, event streams, and integration flows. The foundation for scalable cloud landscapes and controlled indirect access.
SAP Business Technology Platform (BTP)
Build side‑by‑side extensions and innovations on SAP BTP while keeping your ERP core clean. Ideal for managed integrations and modern cloud landscapes.
