cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SImulation in CUP

Former Member

on ‎09-29-2010 4:22 AM

0 Kudos

Hi,

I am trying to run a simulation in CUP (GRC) and RAR to ascertain if removal of existing roles or addtion of new roles for a single user would resolve the SOD risks that show up in CUP. However I am not able to see the Existing roles that have been assigned to the user to be able to do that.

Can someone please help with this?

Thanks

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎09-29-2010 11:53 AM
0 Kudos

Hi Sonal,

When you perform risk analyis on CUP request. Risk Analysis results will be due to role in the request + role already assigned to the user.

So when u try to add new role to user it will work fine. Risk anlaysis results will consider the roles that user already had in CUP as well as in RAR. So does not need to take care of existing roles.

In CUP there is option to select the existing role for role removal. Select role tab-> existing roles. but it is basically used for role removal.

Kind Regards,

Srinivasan

Show replies
Show replies
Former Member
‎09-30-2010 11:40 AM
0 Kudos

Thanks for your response Shrinivasan. I was trying to run a simulation by removing one of the existing roles for the user due to which the conflict was showing up. However, I cannot find the Existing Roles tab in CUP. Can you please help?

Thanks so much.

Former Member
‎09-30-2010 3:21 PM
0 Kudos

Hi Sonal,

While creating a request when you slect role, on this screen you will find existing role button.( clik on select role button -> existing role button

Kind Regards,

Srinivasan

Former Member
‎10-01-2010 4:38 AM
0 Kudos

Hi Srinivasan,

Is the Existing role tab also available at the Compliance Stage? Once the role has been requested and approved by the role owners and SOD conflicts are identified, it goes to the Compliance stage for the Compliance Manager to review and apply mitigating controls or reject the job. At this stage, can the Compliance Manager view the Existing roles somewhere and maybe run a simulation by removing some existing roles and adding the new role to resolve the SOD conflict?

Thanks,

Former Member
‎10-01-2010 10:20 AM
0 Kudos

Hi Sonal,

At compliance stage the existing role button will be visible. Stage level setting at compliance stage should be change request content as "YES" & Add Role "YES". approver's need to click on select Role and than existing role button.

From here you can see the roles that are already assigned to the user.

But I think it is not possible run a simulation by removing some existing roles to resolve the SOD conflict.

If you add a new role in the request, The Risk analysis due to this role + existing role will be visible in CUP.

Kind Regards,

Srinivasan

Ask a Question