on 10-28-2008 7:07 PM
Hello Experts,
We are currently using GRC CUP v5.3 SP0.
Approvers continue to be able to approve the same requests that they submitted. We were under the impression that v5.3 would prevent this from happening.
"Approval of the request: Whenever a request is in approval phase, the system validates if the approver and requestor are same. If so, it displays an error message." (Page 22 of GRC Access Control v5.3 Release Notes 2009-Sep).
Is there a configuration item we are missing?
Thank you!
Hi
Make setting at CONFIGURATION > END USER PERSONALISATION .
Select second check box , approve reject own requests.
Open in Change mode .
Make following settings :
Mandatory = yes
Editable = no
Visible = yes.
NOTE: this would work only if the stage level settings :
Approval level = request
Rejection level = request.
Thnks
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello,
Thank you both for your replies.
I have configured this setting before and set it to:
Configuration Tab --> End User Personalization
Field Name: Approve Reject Own Requests
Mandatory: Not Configurable (defaulted to No)
Editable: Not Configurable (defaulted to No)
Visible: Yes
This setting affects a user's ability to approve access requests about him. (Mary submitted a request for John and John can't approve the request).
The release notes suggest that we would be able to prevent the requestor from approving the request he/she submitted. (Mary submitted a request for John and Mary can't approve the request for John).
Are there other configuration settings we are missing?
Thanks!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
This restriction applies not to the requesters but to the approvers.
The release note states:
This feature addresses the validation of APPROVERS to approve requests in two major areas:
u2022 Configuration for the Request: It provides the ability to validate that the approver
cannot approve the request for access for themselves.
u2022 Approval of the request: Whenever a request is in approval phase, the system
validates if the approver and requestor are the same. If so, it displays an error
message.
I hope this helps, Alex
Please look in configuration - end user personalization.
There you'll find the option you're looking for.
Frank.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.