cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Future dated S.O.D Analysis

Go to solution
Former Member

on ‎09-23-2014 11:27 PM

0 Kudos

Hello All,

For our next go-live we have provisioned all users in the production system with the validity date starting 10/01/2014. We did this so new users wouldn't be able to get into system prior to that date. Simple enough.

Now, we would like to run S.O.D analysis against those users but can't because technically they do not have the access in the system yet. Is there a way to run S.O.D analysis against future dated users?

Regards,

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Colleen
Advisor
Advisor
‎09-23-2014 11:35 PM
0 Kudos

Hi Kyle

Have you tried a simulation instead of a risk analysis? Technically, there is no violations as it's future dated so simulation sounds like a closer option. Not sure if this is a possible option to mass simulate your scenario.

Regards

Colleen

Show replies
Show replies
Former Member
‎09-23-2014 11:38 PM
0 Kudos

Hi Colleen!

Yeah we thought of that but like you said, its a mass scenario and wouldn't really work with 1,600 users getting various types of access.

Thanks

Colleen
Advisor
Advisor
‎09-23-2014 11:46 PM
0 Kudos

If you were to look at the 1600 users and simulate the imparting role instead of the derived roles, how many different combinations of access would you have?

You might find there are 20 different access combinations and can simulate them. That will show you which combination has violations? I'm assuming the users do not have other access in Production already active.

If these are new users, you can lock their account but change the validity to today's date. You can then run risk analysis and they cannot login. Only works if new user.

Regards

Colleen

Answers (0)

Ask a Question