on 07-15-2009 10:15 AM
Hi
Just having a problem
When I go and create CUP request, and do the risk analysis for the selected roles.
When I mitigate the risk violations from analysis, the mitigation controls IDs are assigned directly without triggering any Mitigation control workflow.
1. I have already created Mitigation assignment workflows
2. There is no error in the request creation (approval is going as per simple CUP request)
3. I have enabled workflow in RAR for mitigation control assignment
4. The URLs are correct.
Let me know, where I am going wrong.
I am expecting two workflows , namely 1. Mitigation control ID assignment workflow
2. Simple CUP request workflow.
Second one is happening fine, but there is no trace for first workflow.
Please help me in this.
Thanks
Sahad
Sahad,
1. Did you check the detour option in your defined mitigation workflow Path?
2. Also check whether you created the detour condition right. (Config tab --> Workflow --> Detour/Fork) you need to have the following values:
Workflow Type: CUP
Path: Initial request Path name
Stage: stage where role owner approves the request
Action: Save
Condition: SOD Violations
Value: Yes
Detour Path: your mitigating control approval path
3. And also check your mitigation control approver stage to have the value of Mitigating Approver for the Approver Determinator field.
Naveen
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Sahad,
There is no direct option as mitigating control for the detour assignment (as others on this thread suggested). You can achieve it by using the following way, first you need to have the role owner approver stage set to not to approve any request with out risk analysis and also not to approve the requests with unmitigated risks, there after you can follow the steps from my previous post. This will achieve the following:
1. Role owners have to do the risk analysis (which is mandatory)
2. If sod exists role owner need to assign the mitigating control inorder to approve the request
3. once the request is approved by role owner the request will be detoured to a new workflow for the approval of the mitigating approver (from RAR).
I have this scenario working at my client. If you have any questions let me know.
-Naveen
Hi Naveen
Please can you assist. I am trying to create the detour as per your instructions. My detour path is of workflow type mitigation assignment. As per your instruction the detour must be created for workflow type CUP. I am then unable to assign my detour to this as it is of a different type.
What am I doing wrong?
Thanks
Wilhelm
Hi Naveen
Please can you assist. I am trying to create the detour as per your instructions. My detour path is of workflow type mitigation assignment. As per your instruction the detour must be created for workflow type CUP. I am then unable to assign my detour to this as it is of a different type.
What am I doing wrong?
Thanks
Wilhelm
Hello Sahad,
When you perform risk analysis from CUP and mitigate the risks found there, there would be no workflow generated for Mitigation control approval. This workflow for mitigation control assignment is triggered when you mitigate an object from RAR after risk analysis. i.e if you assign a mitigation to a risk, or user or role then a workflow will be triggered in CUP.
Regards,
Varun
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.