Sammukh,

Correct me I am wrong.

This "Maintain Exclude Objects" will only affect the management reports but not the ad-hoc risk analysis.

Meaning, whatever objects we maintain as "excluded" in SPRO will NOT be considered while updating management report via batch risk analysis.

In all other ad-hoc risk analysis, these objects would be considered and highlighted.

Please advise.

FYI...

In my configuration 1027 is set to "NO".

Regards,

Faisal

Faisal,

if you activate 1027 you can choose "Offline Data" in your risk analysis. Hence you won't see your excluded objects in the analysis with offline data. If you have 1027 set to NO it is always performing an online analysis which doesn't consider the excluded objects.

All other was mentioned by Sammukh.

Let us know if its clear.

Regards,

Alessandro

Alessandro,

Now I set 1027 to "YES" and performed risk analysis for an object which is maintained as "Excluded" in SPRO->GRC->AC->ARA->BRA->Maintain Exclude Objects for Batch Risk Analysis.

I selected "Offline Data" check box and performed risk analysis. Now system is showing as "No Violations" for that object.

I need a bit help to understand this "Offline" risk analysis.

May you please elaborate and help me understand, with example?

Regards,

faisal

Hi Faisal,

you can schedule the batch risk analysis in your GRC system with program GRAC_BATCH_RA (SPRO > GRC > AC > ARA > Batch Risk Analysis > Execute Batch Risk Analysis). The batch risk analysis is required for offline risk analysis and management reports.

Did you run the batch risk analysis before you run your report?

Regards,

Alessandro

Hi Faisal,

For offline / real time analysis explanation also review the SAP note 1580877. This gives the summary.

Thanks

Sammukh

Hi Sammukh,

I saw this note and I could barely understand the "real" difference and need.

Secondly, I found one thread  on SCN which discussed this before and there was a reference to one note:

#1126251: Risk Analysis and Remediation - Offline vs On-line  Analysis

I tried to search this note on service market place. But got error: "Document is not release"

Not sure why this is not available.

Regards,

Faisal

Alessandro,

Yes, Batch Risk Analysis is run from the path you have shown.

Secondly, I am running first Risk Analysis from NWBC->AM->Risk Analysis->Role Level

Then after that I am running Batch Risk Analysis.

Regards,

Faisal

Alessanrdo,

if you activate 1027 you can choose "Offline Data" in your risk analysis. Hence you won't see your excluded objects in the analysis with offline data. If you have 

Now I set 1027 to "YES" therefore, "Offline Data" option is available (earlier grayed out).

If I choose "Offline Data" while performing risk analysis for an excluded object, Report says "No Violations"

If I choose "Offline Data" while performing risk analysis for an object WHICH IS NOT EXCLUDED and it has violations, Report also says "No Violations"!

How come this is possible

Can you please advise?

 If you have 1027 set to NO it is always performing an online analysis which doesn't consider the excluded objects.

When this is possible? Meaning, in Risk Analysis (Ad-Hoc) or at the time of Batch Risk Analysis?

From the SPRO > GRC > AC > ARA > Batch Risk Analysis > Execute Batch Risk Analysis, it is very clear that application will ONLY consider the objects maintained here at the time of running Batch Risk Analysis.

Then it means that in Ad-Hoc analysis, these "Excluded" objects are considered?

Regards,

Faisal

Alessanrdo,

I think the "excluded" objects in path:

SPRO->GRC->AC->ARA->BRA->Maintain Exclude Objects for Batch Risk Analysis

itself says that the objects will NOT be considered while performing Batch Risk Analysis (Analytic Reports). It seems to be working fine for me.

I dont think that the objects maintained in above path will have any importance while performing Risk Analysis from NWBC->AM->Roles Analysis) and will NOT be considered.

Please correct me, if required.

Secondly, I found 2 relevant posts here on SCN:

Both of them are talking about the offline mode of running risk analysis. Actually I have not used it yet therefore, wanted to know the real usage of it. These posts seem to be giving the details of "Offline" mode analysis.

I believe this will not be used in my scenario as there is no such requirement and real need. Therefore, I think I should disable it (Offline Data) option from the analysis screen just to avoid any confusion.

Currently all our risk analysis is taking place "Online". There is no "real" need to use "Offline".

May you please let me know in which scenario this would be useful?

Regards,

Faisal

Hi Faisal,

you have to consider the setting based on your business requirement. Sometimes it is required to have offline analysis, e.g. for very huge reports or when you are remediating violations you have to have the same baseline.

Personally I am not using the offline analysis as I want to see the real situation for the time when I analyze. But as mentioned it depends on your requirements. If you haven't had this option I assume it isn't required.

Best regards,

Alessandro

Alessandro,

Thanks for your reply and sharing the thoughts.

Even I dont see any business need now for me. Therefore, I am going to disable it now.

But may you confirm if my understanding is correct "exclude" objects?

Regards,

Faisal

Hi Faisal,

yes I confirm - had the same thoughts.

Regards,

Alessandro

Thanks