on 01-16-2016 4:39 AM
Hi Gurus,
We have a requirement where we need to restrict Org Admins by different geogerphies like Asia , Europe etc.
These admins can view the whole Org but admins of Asia and Aust. can only be able to assign local controls and tester to only under there orgs but cant change the master data while admins from US and Europe can only change there respective org master data and assign testers to these org.
We are on 10.1.
Any suggestions?
Hey Aryendra,
have you checked whether the 2nd Level authorization concept (Security guide chapter 5.1) may be can a solution for your issue?
I think that should work!
Regards
Tobias
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hey Aryendra,
in the GRC backend in the PFCG you have different roles for different tasks wich you can assign to the user. Additionally you must assign specific users (with this roles) to a specific organization or company (as well as processes and controls) which you have created in the org structure. Go to NWBC into Access Management, then GRC Role Assignment and then Organizations. Here you can add an user which is responsible for a specific organization. But it depends on your org structure. You can also work with zentral or local master data. So an local user can only change local master data but not globaly.
I hope this helps
Tobias
Any inputs of any kind,
Do we have functionality in GRC PC to restrict on different Org or Process level at all like in SAP on different plants? Or its just that we can restrict only vertically on all org and all process-sub-process level only and not on different values of Org and process.
Can anyone please clarify this?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
89 | |
10 | |
9 | |
9 | |
9 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.