Discrepancy in SOD Risk level at user level report

Former Member · ‎08-16-2016

Hi,

I changed a SOD risk ID level from "HIGH" to "LOW" but in user level risk analysis and in mitigation control the risk is still showing up as "HIGH".

I regenerated the ruleset but issue is still persisting.

Attached is the screenshot.

plaban_sahoo6 · ‎08-17-2016

Hi,

Could you verify after removing Risk id from your Mitigation Control, and then re-adding it.

I am trying to search for a note on this error.

Regards

Plaban

Former Member · ‎08-17-2016

For mitigation control we can do this and it will resolve the issue but in User analysis also it showing wrong risk level.

Also we are trying to find out root cause to avoid it.

japneet_singh2 · ‎08-17-2016

Dear Customer,

Kindly implement the note 2093348 and then test the scenario.

Thanks & Regards
Japneet

Former Member · ‎08-17-2016

We are at GRC 10.1 SP 12 hence this note is not applicable. This note is applicable till 10.1 SP 08.

Former Member · ‎08-17-2016


Rajesh Sah wrote:

We are at GRC 10.1 SP 12 hence this note is not applicable. This note is applicable till 10.1 SP 08.

Rajesh,

That is why those details are among the *required* information in this space, so that you avoid wasting the time of people who are kind enough to try to help you. Please review the Minimum Information required document for your future reference.

Thanks,

Gretchen Lindquist

Space Moderator

Former Member · ‎08-17-2016

Thanks .. Will take care in future .

former_member185447 · ‎08-17-2016

Hello Rajesh Sah,

Try to remove the Risk Id and add it again to the mitigation control as sahoo mentioned as the image 3333.jpg suggest that the risk id level that you changed is not updated since the updated on column shows date in the year 2015.

Try executing Authorization Synch. job and re-generate the rules again.

Regards,

Rakesh Ram M

Former Member · ‎08-17-2016

Authorization synch & re-generation all done. . Issue still persist in user level risk analysis.