on 09-26-2014 11:35 AM
Hi All,
I have defined SOD risks with Risk Level "HIGH" and generated the rules
Access Rule summary also shows that rules are generated with risk level "HIGH"
But when I execute the risk analysis for these risks which are defined with risk level as "HIGH", in the risk analysis result they are being shown with risk level "MEDIUM"
I have run all the synch jobs. My logical group also contain only one connector. To cross check I have generated rules again from front end.
Someone please help if I am doing something wrong.
Regards,
Madan.
Open the risk and just save it. Test it again. It could be because of buffer.
Thanks
Prem
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Madan,
what's your SP level? There are some notes regarding the risk level... see for example:
http://service.sap.com/sap/support/notes/1762040
Regards,
Alessandro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Alessandro,
We are using GRC version 10.0 and Support Pack 13.
The mentioned note is applicable for SP 10.
I am so confused about this as my risk has risk level "HIGH" and even "Access Risk Summary" shows risk level as "HIGH", whereas, when I execute risk analysis, in the results it is coming as "MEDIUM"
Can you suggest if there is any other way to troubleshoot this issue?
Thanks in advance
Regards,
Madan.
Hi Ameet,
I am able to see all my Risk IDs in GRACSYSRULE table. All rules are getting generated.
In the access risk analysis summary and access rule details in NWBC -> Setup -> Generated Rules
I can see that rules are properly generated with risk level HIGH
But when I run risk analysis, report shows HIGH risks as MEDIUM risks
Can you please suggest if I am missing anything here.
Regards,
Madan.
Hi Alessandro and Ameet,
Just now checked and found something
when running risk analysis I selected to show risks with risk level "MEDIUM"
Result - No risks found
when running risk analysis I selected to show risks with risk level "HIGH"
Result - Risks found but shown with risk level "MEDIUM"
This looks terrible
Regards,
Madan.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.