on 08-19-2014 2:01 PM
Hello GRC Community,
I have a following issue:
When I use mass risk analysis the deactivated authorization objects in the role are displayed as result. At the same time, when I use Role Level Risk Analysis the role with deactivated critical authorization objects doesnt appear.
Does anybody know how to solve this issue? Is there any configuration parameter to be adjusted?
thanks
best regards
Sabrina
Hello,
Please paste screenshot with show all object and detail view.
Regards,
Prasant
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
strange - could it be that you run the first analysis, where you have the wrong risks showing, with option "offline data"? It might be that the batch risk analysis wasn't performed for a while and hence the analysis shows the wrong result.
Also I would like to now where you start the first analysis and with which options/criterias did you start?
Regards,
Alessandro
Offline-Data Option is not activ (Parameter 1027 set to NO). Anyway, I have performed the Batch Risk Analysis, but the Job result remains the same. Deactivated authorization objects are displayed in the result table.
The mass role Analysis start:
Which Options/criterias are behind the mass Risk Analysis? Where I can get this Information?
Regards,
Sabrina
Hello Prasant,
the role has the permission objects F_BKPF_BUK mentioned in the mass Risk Analysis, but only active are the activities 03 and 08.
Activity 01 and 02 are deactivated.
Therefore they shouldnt be critical.
We have the same issue in the CUP reguests. The roles with the deactivated permission objects have red risk Status and goes automatically to security stage. This is actually a big problem, because it leads to a huge job overload for our security stage. They have to check whether the role has deactivated permission objects or not.
I really hope, we can find any solution for this issue.
Regards
Sabrina
Sabrina,
what SP level are you?
There are some notes regarding mass role risk analysis. Did you check them? e.g. http://service.sap.com/sap/support/notes/1698178
Regards,
Alessandro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.