on 08-28-2015 8:50 PM
Hi experts!
Im working in GRC 10.1 SP07, i have configured SOD Review scenario but i have a dude. When Reviewer open a work item, he only has two possible action to perform: "Propose Removal" and "Mitigate Risk". ¿Is there any way for the Reviewer to "accept" a certain risk? i mean, without remove any role or mitigate risks.
Thanks!
Hi Emiliano,
When you have any risks associated with the user, you have only two options left. Either Remidiate it ( Remove the role causing Risk ) or Mitigate it. And that what the options the reviewer is getting. And If any option is available to just accept the risk as such without removing any role or mitigating the risks, then the whole concept of SOD Review fails. One of the purpose of have SOD review done is to make sure no one has any risk which is not mitigated.
Hope this help.
Close this thread if you have no other concern.
Regards,
Fazil
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi!
Thanks Fazil i agree with your point of view.
@Plaban: Even if you add actions there, no other options are avaible.
Thanks both of you!
Regards
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Although i have not tried, could you add actions, in Request type(for SOD review) in SPRO->..>User Provisioning, and then see if you get additional options.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.