on 01-08-2015 8:50 AM
This message was moderated.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sara,
Authorization to access reports dashboard can be controlled using below authorization objects with display access.
GRAC_SYS and GRAC_REQ authorization objects
Earlier this report was checking objects GRAC_SYS and GRAC_REQ with ACTVT 01 for displaying the reports which we recently raised to SAP and got it fixed through below SAP note
2113085 - UAM: Incorrect authorization activity check for access request and provisioning reports
Regards,
Madhu.
Hello Madhu and Sara,
First of all I thank both of you for all the questions and answers that you are contributing in the grc space which is helping us a lot.
I have a doubt here.
As madhu has mentioned the following:
Authorization to access reports dashboard can be controlled using below authorization objects with display access. GRAC_SYS and GRAC_REQ authorization objects
when I went through the objects through SU21, I found the following information
GRAC_SYS : Auth. Object for SOD System and
GRAC_REQ : Auth. Object for CUP Access Request
When I saw this information, I couldn't relate these Auth.objects to reports in dashboard.
Is there any way where I can find the purpose of Authorization object and where it is used to restrict what?
Regards,
Deepak M
Hi all.
I have check these two authorization objects and i maybe i am wrong but i was not able to see some fields where i could restrict the access to the information contained into the Access Reports.
Let me try to be more clear with the requirement:
Some users want to have access to see Access Request reporting with the following information:
- Check requests for specific Company
- Check who created the request, who approved it in the different levels
- Check the status, etc...
The point is i don't want users from company A have access to see requests from users from company B and i was wondering if i could be able to restrict the access to the reports and/or dashboards through the Authorization Objects.
Kind regards and thank you.
Sara.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.