cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Position based analysis

Go to solution
Former Member

on ‎11-13-2015 9:28 AM

0 Kudos

Dear All,

Is it possible to set up GRC access rules based on a combination of a position and authorizations?

For example a SoD conflict is when one can approve invoices and process invoices.

Process invoices is based on authorization (FB60 etc.) For this I can create a ' standard ' GRC function

Authorization to approve invoices is handled through a table (COA) and the HR position of a user (e.g. supervisor) .

How can I combine both functions into one risk?

Thanks

TJ

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎11-17-2015 1:00 PM
0 Kudos

The trick is to use a supplementary rule on top of a new dummy or existing function

For example in case VIM/SIM is used you can identify the users mapped to approval levels/limits through table /OPT/APPR_COA  field name OPT_USERID as supplementary rule for users that have access to process invoices through SBWP or /OPT/VIM_WP

Show replies
Show replies

Answers (0)

Ask a Question