on 11-13-2015 9:28 AM
Dear All,
Is it possible to set up GRC access rules based on a combination of a position and authorizations?
For example a SoD conflict is when one can approve invoices and process invoices.
Process invoices is based on authorization (FB60 etc.) For this I can create a ' standard ' GRC function
Authorization to approve invoices is handled through a table (COA) and the HR position of a user (e.g. supervisor) .
How can I combine both functions into one risk?
Thanks
TJ
The trick is to use a supplementary rule on top of a new dummy or existing function
For example in case VIM/SIM is used you can identify the users mapped to approval levels/limits through table /OPT/APPR_COA field name OPT_USERID as supplementary rule for users that have access to process invoices through SBWP or /OPT/VIM_WP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.