cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

GRC AC 10:How to generate Access Rule? No output from User or Risk Analysis

Go to solution
Former Member

on ‎10-20-2011 10:04 AM

0 Kudos

Hello Gurus,

We have done configuration of GRC AC 10, and uploaded files via

SoD rules -->Upload Rules

After that we generated SoD rules for Risk Id : B001 and B002

Now when we go to NWBC --> Reports & Analytics >Access Dashboards>Access Rule Library

The report shows (for Group Rule level : Action)

Number of Active rules : 0

Number of Disabled Rules : 0

Number of Functions : 151

Where as for Group Rule level : Action Risk

The report shows

Number of Active Risk : 42

Disabled risk : 161

Nmr. of functions : 151 .

When we perform Risk Analysis at User Level or Role Level, the output is empty !!!

Note: All the background jobs have run successfully.

Also the SoD files also have been uploaded successfully.

Will you please guide how can i activate the "rules" for the uploaded risk ??

regards,

Victor

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎10-20-2011 10:46 PM
0 Kudos

HI,

Before running the user / role risk analysis you need to run user sync job in SPRO>GRC> Background Jobs.

If you are using LDAP then select the LDAP connector otherwise selected backend system connector.

Regards

Rajan Arora

Show replies
Show replies
Former Member
‎10-21-2011 12:06 PM
0 Kudos

Hello Rajan,

The jobs ran successfully , but there is no output .

When i try to see Report & Analystics ---> Access Rule Detail Report

I get following options

1) System : where i select our ERP system

2) Rule Set : i select "GLOBAL"

3) Select Access Risk ID : I select * or any ID like B001

The output is nill/blank..

Will you please tell me how can i activate the Rules for all the uploaded functions and actions ??

Regards,

Victor

Former Member
‎11-10-2011 6:41 PM
0 Kudos

Hello Victor,

I am also facing the same issue in Risk analysis.

Please let me know/help if you have resolved this one.

Thanks,

Inder

Former Member
‎11-13-2011 12:32 PM
0 Kudos

Hello Victor/ Inder,

For Risk ID B001functions are BS02 and BS11 if you open any one of them you can see system maintained as SAP BASIS which is SAP_BAS_LG (logical connector group).

Post installation you can check in SPRO>Governance, Risk and Compliance-> common Component---> integration framework-> maintain connector and connector types->select SAP and click Define connector Group.

BUSINESS Business Roles SAP

SAP_BAS_LG SAP Basis SAP

SAP_CRM_LG SAP CRM SAP

SAP_ECC_LG SAP ECCS SAP

SAP_HR_LG SAP HR SAP

SAP_NHR_LG SAP R3 - NON HR Basis Logical Group SAP

SAP_R3_LG SAP R3 SAP

SAP_SRM_LG SAP SRM SAP

(If not present then manually you can create the same)

Select SAP_BAS_LG and put connector type as SAP, select SAP_BAS_LG and click Assign Connector group to group types as AM & LG, then click on Assign Connector to connector group and maintain you connector.

Post this activity re generate SOD for B001 and then check for user level and role level analysis.

Hope it will resolve your issue.

Regards,

Sudesh

Former Member
‎12-20-2011 7:59 AM
0 Kudos

Hi Sudesh,

I was facing the same error , after implementing the steps you mentioned in your blog my issue was resolved. Thanks for help.

Regards,

Sumanth

Former Member
‎05-20-2013 2:52 PM
0 Kudos

Hi Sudesh,

Are you suggesting that for SAP_BAS_LG we should have both Logical Group AND Automated Monitoring Framework (whatever that is) for Assign Connector Groups to Group Types.

Please confirm as I only have it as Logical Group for now.

If that is the case, that both Logical Group and Automated Monitoring Framework needs to be assigned to all  Define Connector Group (SAP_ECC_LG, SAP_r3_LG etc) plaese let me know ...

Hmmmm

Many thanks,

Paul

Answers (1)

Answers (1)

Former Member
‎04-20-2015 10:30 AM
0 Kudos

This message was moderated.

Show replies
Show replies
Ask a Question