- SAP Community
- Products and Technology
- Additional Q&A
- GRC 10 AC Risk analysis for custom transaction cod...
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
GRC 10 AC Risk analysis for custom transaction codes
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 07-31-2013 7:00 AM
Dear Experts,
For testing, I created 2 custom tcodes Z_ME21N and Z_FB01 copied from ME21N and FB01 tcodes, do SU24 update for them. And added these tcodes to the roles.
But when I run risk analysis in GRC, we saw risk details fro ME21N and FB01 tcodes but do not find form custom tcodes.
Could you please help what should I do for custom transaction codes risk analysis?
Accepted Solutions (1)
Accepted Solutions (1)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hello
first you need to add that tcode to function id.since its copy of tcode. add to those function id where those other tcode exist.
how it works is risk id =functionid1+funtionid2
each function id contains tcodes and relevant auth object.
when u run risk analysis if those combination exist will throw risk..
has to maintain on grc system.
follow amits sugestion
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Answers (3)
Answers (3)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hi Nazli,
After creating custom tcodes you should go through following procedure:-
1) Sync. Object repository using SPRO transaction.
2) Generate the Risk using functions in which these tcodes included.
3) Then after checking authorization perform risk analysis of user on Action as well as permission level.
4) If still problem exit then upload custom ruleset containing all nine tables.
Regards,
Parag.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hi Nazil
Please run the sync jobs in GRC to bring all the custom t-code in the GRC system.Then create new functions containing those new t-codes.Then create the risk ids containing those new functions and generate the rule set.Once you are done with this you will be able to get the desired results.
Regards
Pradeep
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Colleen
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
HI Nazli
You have described what you have done in ERP. What have you done in GRC for these Z_* transactions (sync jobs/rule set maintenance and generation, etc)?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hi Nazli,
Run PFCG authorization sync job in GRC system to sync data from backend system where these custom tcodes are created. This will bring the custom tcodes into GRC.
Then add this tcode into a relevant function and finally generate the rule.
You could now be able to see the risk analysis report for custom tcodes.
Regards,
Amit
- SAP EWM. Displacement from picking to storage area. Idea & step-by-step implementation (with ABAP). in Supply Chain Management Blogs by Members
- SAP Integration Suite - Design Guidelines in the integration flow editor of SAP Cloud Integration in Technology Blogs by SAP
- How to pass multiple messages from ABAP (Exit/BADI) to the UserInterfaces in S/4HANA-Assetmanagement in Technology Blogs by Members
- Why Logistics Visibility is Best with SAP Business Network Global Track and Trace in Supply Chain Management Blogs by SAP
- End-to-end Processes and modular processes in SAP Signavio Process Insights, discovery edition in Technology Blogs by SAP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.