on 06-11-2012 12:21 PM
Hi All,
We're implementing GRC 10.0 Access Controls.
The dashboard reports include output for all rules; including SOD rules and sensitive/critical action rules. We would like to exclude the sensitive/critical actions from the dashboard reports. We only want the dashboards to show SOD conflicts.
What is the best way of achieving this?
Our initial thought is to build two separate rulesets – one for SOD rules and one for critical actions. We will then set the SOD ruleset as the default ruleset in the AC settings, and rerun the batch risk analysis job.
Also, is it possible to generate pie charts for the individual business processes? The “Risk Violations” dashboard shows a bar chart, but when we click on any of the business processes, a table listing violations is generated.
Any guidance would be much appreciated.
Thank you!
Hi Maeve, did you find a way to exclude the sensitive/critical actions from the dashboard reports? We also looking for the same on our management reports and i couldnt find a way.
Thank you.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Maeve,
Management Report includes....
Refer to SAP Note "1707492 - Risk type updated in Management Report Dashboard at User level".
So this report is a count of all these risks and categorized with their Risk Levels. You have an option (at the bottom of Risk Violation Management Report) "Access Risk Violations by Process", where the violations are categrorized with BP.
Having 2 differnt Ruleset will also not solve your purpose.
It's a customization in code, if you need only SOD violations in the report.
Thanks & Regards
Neeraj
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.