cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Risk Analysis Report Not Same In Dev And Prd

simhadrinaidu
Explorer

on ‎08-20-2015 7:48 AM

0 Kudos

Hi,

We have found Critical Action Level risk in Dev system while running RA ,but in production we have not seen any risks for the same role.We have checked function ID & Risk ID  in both environments and no differences found.

Please help me.

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (4)

Answers (4)

simhadrinaidu
Explorer
‎08-21-2015 6:56 AM
0 Kudos

Hi All,

Thank you so much your help

I have generated rule set and now issue is resolved.

Regards

Simmu

Show replies
Show replies
former_member193066
Active Contributor
‎08-21-2015 7:47 AM
0 Kudos

Thats good.

have a great day...

Former Member
‎08-20-2015 1:59 PM
0 Kudos

Hi Simmu,

Your ruleset is not generated. You can setup a daily periodic background job for program 'GRAC_GENERATE_RULES' in your GRC system. This will insure that any time you make any change to ruleset your rule get generated.

(1) You can generate rule set from NWBC. NWBC method is posted by Alessandro Banzer above.

(2) In backend transaction SPRO.

SPRO->Governace Risk and Compliance-> Access Control ->Access Risk Analysis -> SoD Rules -> Generate SoD Rules.

Let me know if works

Arvind

Show replies
Show replies
former_member193066
Active Contributor
‎08-20-2015 10:56 AM
0 Kudos

Let me know if i have understood correctly.

In dev system you have run risk analysis critical level for Role A : you found risk

in PRD critical Action Level risk for Role A : no risk found.

the above information is not valid in you last msg, the rule set you have pasted in SOD rule set from PRD system.

look for Action rule in Both the system.

ensure in PRD its generated.

Regards,

Prasant

Show replies
Show replies
simhadrinaidu
Explorer
‎08-20-2015 11:25 AM
0 Kudos

HI Prasant,

Yes you are correct and i have pasted both rule sets in above message.

And Can you pls let me know where i need to check action rule and where i need to check whether it is generated OR Not?

Regards

Simmu

former_member193066
Active Contributor
‎08-20-2015 12:41 PM
0 Kudos

In NWBC of both system.

under setup risk id.

filter with critical action and verify.

Regards,

Prasant

alessandr0
Active Contributor
‎08-20-2015 8:43 AM
0 Kudos

Dear Simmu,

can you please also compare the access rule details as those are considered in risk analysis. Whenever you change risks or functions you need to generate the rules. Therefore please also check if the rules are similar.

You can do so in NWBC > Rule setup > Generated Rules > Access Control Rules.

Regards,

Alessandro

Show replies
Show replies
simhadrinaidu
Explorer
‎08-20-2015 10:30 AM
0 Kudos

Dear Alessandro,

I have downloaded relevant risk id rule set from below path

NWBC > Generated Rules > Access Rule details

Please find below differences and and let me know the relevant action which needs to be taken.

In Dev:

SystemRule SetAccess Risk IDFunctionsActionAccess Rule IDPermission ObjectFieldStatusValue FromValue ToOwnerCondition
DevGlobalGL08G006OB08000OS_TCODETCDActiveOB08AND
DevGlobalGL08G006OB08000OS_TCODETCDActiveOB08AND

In PRD:

SystemRule SetAccess Risk IDFunctionsActionAccess Rule IDPermission ObjectFieldStatusValue FromValue ToOwnerCondition
PrdGlobalGL08G006OB08000CS_TCODETCDActiveOB08AND
PrdGlobalGL08G006OB08000CS_TABU_DISACTVTActive1OR
PrdGlobalGL08G006OB08000CS_TABU_DISACTVTActive2OR
PrdGlobalGL08G006OB08000CS_TABU_DISDICBERCLSActiveFC32AND
PrdGlobalGL08G006OB08000CS_TABU_DISACTVTActive1OR
PrdGlobalGL08G006OB08000CS_TABU_DISACTVTActive2OR
PrdGlobalGL08G006OB08000CS_TABU_DISDICBERCLSActiveSCUSAND
PrdGlobalGL08G006OB08000CS_TCODETCDActiveOB08AND
Ask a Question