on 05-21-2014 7:45 AM
HI All,
In ARQ, requester submits a request and risk analysis is performed in the background (Parameter#1071) at the time of request submission. The default analysis type is "Permissions" (parameter#1023).
When the request is reaching to Manager or Role Owner, this violations report is available for them also. They can view both types of reports: Actions and Permissions.
Since these categories of users do not understand the technical details of authorization objects, I want to restrict this report type to "Actions" only. At least this way they can understand at a higher level and take the decisions accordingly.
If authorization objects level details are displayed to them, they are overwhelmed with too much of technical details and getting confused as what to do.
Therefore, I would like to allow them to view actions report ONLY. Though the analysis is done at permissions level.
In order to achieve above, I tried below:
1. Tried to use GRAC_REP auth. object. It seems that mostly it is related to "Analytics Reports" and I could not find any help with this.
2. Tried to modify the "GRAC_OIF_REQUEST_APPROVAL" application through SE80. But did not get any option to hide/disable the "Permission" option from the drop down list.
Can any one please suggest me on how to achieve above?
Regards,
Faisal
Hi Faisal,
You can check the below blog to meet your requirement.
Regards,
Neeraj Agarwal
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Dear Neeraj,
Thanks for your reply.
I think there is a gap in understanding. This is already done. What I want is, while viewing the violations report, user can select "Action" or "Permission" from the repot type drop down. I want only "Action" option displayed there in the drop down.
Please suggest.
Regards,
Faisal
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Dear Faisal,
this behaviour seems to be correct for me. As you are lacking authorization you cannot run the risk analysis with missing authorization for unauthorized parameters.
Can you show me a printscreen how you want to run the risk analysis? With which criterias?
Alternatively you can check SLG1 logs which authorization objects are missing. But be careful, as you restricted the access it will show lots of missing authorizations.
Regards,
Alessandro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.