04-14-2009 2:15 AM
Hello,
Were using compliance calibrator 5.2 configured for Critical Action HRMD. CC's permissions are enabled for T-Code PA30:
Field Value Fr Value To Condition Status
AUTHC D Or Enabled
AUTHC E Or Enabled
AUTHC S Or Enabled
AUTCH W Or Enabled
Infotype 0014 - 0015 And Enabled
There are many roles both single and complex within the SAP environment that are configured to use PA30 with this infotype range and different combinations of the "authc" value, but when I run a role analysis for any of these roles no violations are detected. Is there something in the configuration of CC or within SAP that would prevent these roles from appearing in the role analysis?
04-14-2009 7:44 AM
Hello Adamo,
1. Have you done the rule generation and scheduled the BG jobs for the same?
2. Also, please be sure you have the roles in the CC table for which you are performing the risk analysis. You can make this sure by searching for these particular roles in the drop downs.
Regards,
Hersh.
04-14-2009 7:44 AM
Hello Adamo,
1. Have you done the rule generation and scheduled the BG jobs for the same?
2. Also, please be sure you have the roles in the CC table for which you are performing the risk analysis. You can make this sure by searching for these particular roles in the drop downs.
Regards,
Hersh.
04-14-2009 11:38 AM
Check for the points mentioned by Hersh like role sync and all. Have you mitigated the risk? In case yes, then please select NO for the Exclude mitigated risk option while doing analysis. The risk should show up then.
Harleen
SAP GRC RIG APJ