cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to switch on mandatory risk analysis in Business Role Management?

Go to solution
Former Member

on ‎05-28-2014 10:30 AM

0 Kudos

Hi,

Referring to SAP GRC 10.0, I'm looking for some solution in order to activate risk analysis as necessary during Business Role Management stage.

So, I need mandatory risk analysis on roles update next step; but not before roles generation because update is already approved.

Thanks for any support,

Ettore Brocca

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

alessandr0
Active Contributor
‎05-28-2014 10:37 AM
0 Kudos

Dear Ettore,

you can define the methodology processes and steps in SPRO > GRC > AC > Role Management > Define Methodology Processes and Steps. Define Risks Analysis before role generation.

Regards,

Alessandro


Show replies
Show replies
alessandr0
Active Contributor
‎05-28-2014 10:43 AM
0 Kudos

Sorry, forgot to mentioned that you can enable risks analysis also in IMG.

Example:

Parameter 3011: If you set this parameter to YES the risk analysis is automatically performed when you generate roles.

Parameter 3014 - 3018: You can allow/prohibit that it is not allowed to create roles having risks (3014 - permission level, 3015 - critical permissions, 3016 - action level, 3017 - critical actions, 3018 - critical roles/profiles).

Hope this gives you an idea how you can configure your requirements.

Let me know if you need further details.

Regards,

Alessandro

Former Member
‎05-28-2014 11:05 AM
0 Kudos

Dear Alessandro,

thanks so much!


- Referring to your first reply - in order to fix a sort of "HowTo" - in SPRO we need to select:

Step 1:

Step 2:

Step 3 (as-is configuration):

Then, proceed changing step order. Is it correct?

- Referring to your second reply, in SPRO we need to select:

Step 1:

Step 2 (as-is configuration):

Then, proceed switch off 3014-3018 parameters. Is it correct?

Thank you for your patience.

Ettore

Former Member
‎05-28-2014 11:56 AM
0 Kudos

Hi Ettore,

You can perform any of the 2 procedures.

1. Methodology ---- change the order.

2. IMG-- Enable the 3011 parameter YES and switch off 3014-18.

If the parameter 3014-18 are YES then the role is created even though Violations are present.

For your requirement you  can use the above 2 methods

BR, Ravi

alessandr0
Active Contributor
‎05-28-2014 12:24 PM
0 Kudos

Dear Ettore,

yes exactly. You have to change the parameters based on your requirement. If you do not allow to proceed with having risks, than change the parameters to NO.

Regards,

Alessandro

Former Member
‎05-28-2014 1:20 PM
0 Kudos

Dear Ravi and Alessandro,

thanks so much for tips!

Best Regards,

Ettore

Former Member
‎06-03-2014 2:58 PM
0 Kudos

I'd like to propose another scenario.

Now Risk Analysis is before profile generation and it is correct in this way.

But also Risk Analysis must be mandatory in that step (before approvation) and NOT ONLY during profile generation.

Is it possible to setup a "specific" configuration in this way?

Thanks.

Ettore

Answers (0)

Ask a Question