cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Management report required for SOD

Go to solution
Former Member

on ‎10-14-2014 4:32 AM

0 Kudos

Hi All,

Can you please suggest, which Management report needs to be completed, for generating SOD review requests. I have already run the program: GRAC_BATCH_RISK_ANALYSIS and the table GRACMGRISKD shows all the risks. After this, i have run Background scheduler (data genration for SOD request), but still, no SOD review request, as shown below

Regards

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

madhusap
Active Contributor
‎10-14-2014 6:30 AM
0 Kudos

Hi Plaban,

Please follow the below guide

Regards,

Madhu.

Show replies
Show replies
Former Member
‎10-14-2014 9:55 AM
0 Kudos

Hi Madhu,

I have followed the same doc., and after reading and executing that doc, i have posted this ques. Page 6 in this doc. mentions the below

Regards

Plaban

madhusap
Active Contributor
‎10-17-2014 4:25 AM
0 Kudos

Hi Plaban,

Here is a link to a how-to guide and steps below to help solve common SOD review issues:

http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/70d4fde1-e8b9-2e10-31a6-94a4bdb56...


SOD Violation Review reports unmitigated SOD violations in the target system and uses workflow to route requests for review as to whether to remove the violation by modifying access or to mitigate the risk when violations are necessary.  In the case of remediation, the reviewer specifies the access to be removed.

The high-level process for SOD Review is as follows:


• Batch risk analysis is executed (required OFFLINE set to YES).
• SOD Review requests are generated.
• E-mail notifications are sent to reviewers.
• Requests are reviewed and actions are noted by the reviewer to propose the removal of a function, assign a mitigating control for the risk, or confirm the existing mitigating control assignment.
• Mitigating control assignments or extensions are automatically executed.
• Functions marked for removal are analyzed and addressed by Security.

Need to run jobs "Generate data for access request SoD Review"
Then after review is completed, "Update workflow for SoD request".

For SOD review to work, please run daily batch risk analysis, action usage sync, role usage sync jobs, and repository object sync.

1.  Offline analysis needs to be set to YES.

2.  Parameters 2016 - 2023 should be set in SPRO IMG.

3.  Maintain Service Level agreement for SOD review.

4.  A default request type is needed for SOD review.

5.  Agent type in workflow should be directly mapped users to pull from risks.

6.  Risks should be assigned owners. Those owners need to exist in the GRC system.

Regards,

Madhu.

Former Member
‎10-17-2014 6:43 AM
0 Kudos

Hi Plaban,

Are you getting confused with reports types with Management reports..?

Management reports will help you to see the reports details in summarized formats, like in pie-chart formats.

Once you would run all the mentioned jobs, you would be able to see the data for SoD reviews.

Hope this is clear now. Let us know for any further assistance.

Regards,

Ameet

Answers (0)

Ask a Question