on 07-01-2014 2:44 PM
I am trying to do risk simulation for composite role in GRC 10. I do this:
NWBC->Access Management -> Role Level Simulation:
Under Define Analysis Criteria I give the details of the single role -> System, Role Type, Roles (in comp role), Report Type @ permission Level.
Under Define Simulation Criteria I add action
Run in Foreground.
I don't get any risk.
Is this the correct way of doing it?
Can anyone suggest any document on such tasks.
Also can i do risk simulation in derived roles from simulation reports under Access Management?
Dear Smriti,
it's correct - you can either simulate what happens if you add roles, actions or profiles to your composite role. Same possibility is given for single roles, derived roles, etc.
To simulated risks you have to ensure that the composite role conflicts with your added role, action or profile. You can easily check if your simulation works with profile SAP_ALL.
Hope this helps.
Best regards,
Alessandro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Great 🙂
You can check the GRC Wiki - Governance, Risk and Compliance Home - Governance, Risk and Compliance - SCN Wiki or if you don't find the answers let us know.
Best regards,
Alessandro
ps. please mark this thread as answered.
User | Count |
---|---|
15 | |
3 | |
2 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.