on 05-28-2014 10:30 AM
Hi,
Referring to SAP GRC 10.0, I'm looking for some solution in order to activate risk analysis as necessary during Business Role Management stage.
So, I need mandatory risk analysis on roles update next step; but not before roles generation because update is already approved.
Thanks for any support,
Ettore Brocca
Dear Ettore,
you can define the methodology processes and steps in SPRO > GRC > AC > Role Management > Define Methodology Processes and Steps. Define Risks Analysis before role generation.
Regards,
Alessandro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Sorry, forgot to mentioned that you can enable risks analysis also in IMG.
Example:
Parameter 3011: If you set this parameter to YES the risk analysis is automatically performed when you generate roles.
Parameter 3014 - 3018: You can allow/prohibit that it is not allowed to create roles having risks (3014 - permission level, 3015 - critical permissions, 3016 - action level, 3017 - critical actions, 3018 - critical roles/profiles).
Hope this gives you an idea how you can configure your requirements.
Let me know if you need further details.
Regards,
Alessandro
Dear Alessandro,
thanks so much!
- Referring to your first reply - in order to fix a sort of "HowTo" - in SPRO we need to select:
Step 1:
Step 2:
Step 3 (as-is configuration):
Then, proceed changing step order. Is it correct?
- Referring to your second reply, in SPRO we need to select:
Step 1:
Step 2 (as-is configuration):
Then, proceed switch off 3014-3018 parameters. Is it correct?
Thank you for your patience.
Ettore
Hi Ettore,
You can perform any of the 2 procedures.
1. Methodology ---- change the order.
2. IMG-- Enable the 3011 parameter YES and switch off 3014-18.
If the parameter 3014-18 are YES then the role is created even though Violations are present.
For your requirement you can use the above 2 methods
BR, Ravi
I'd like to propose another scenario.
Now Risk Analysis is before profile generation and it is correct in this way.
But also Risk Analysis must be mandatory in that step (before approvation) and NOT ONLY during profile generation.
Is it possible to setup a "specific" configuration in this way?
Thanks.
Ettore
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.