Skip to Content

Archived discussions are read-only. Learn more about SAP Q&A

Risk Analysis generates hits because of fields in different roles

Anyone experience with this?

When I'm performing a risk analysis on HR object level, GRC is generating hits because of a combination of fields of the same authorization object coming from different roles.

Example 1/

hit generated because S_TABU_DIS-ACTVT comes from one role and S_TABU_DIS-DICBERCLS from another:

Ruleset

Example 2/

Again S_TABU_DIS: gets ACTVT and DIBCERCLS from seperate roles

ruleset

Users are linked to HR objects.

Whenever I perform the same analysis on user level, I don't get any results (which is expected & correct)

Checking HR Position assignment to users

Object 50001134

Object 50001775

Analysis

Permission rules:

Any thoughts or advice is highly appreciated





We are on GRC 10.1 SP 12

Target system has GRCPINW V1100_731 0013



Best regards,


Tags:
Not what you were looking for? View more on this topic or Ask a question