cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

No violations after creating Roles

Go to solution
Former Member

on ‎06-09-2014 9:04 PM

0 Kudos


Hi Experts,

So I have kind of a weird situation that Im hoping I can get some help with.  Around a month ago we decided to upgrade GRC from version 10.0 to 10.1 and before the upgrades all SOD simulations were working fine but now for some reason is working on some roles and in others is not working.  So for example if I create a new role with access to SU01 and PFCG, import in to NWBC, run synch jobs, etc. the role show "No Violations".  Now if I run the analysis on a role that was available on the system before upgrade with those same tcodes I see the violations.  I try re-importing all the roles on NWBC, re-generating the Ruleset all the logical connections look ok, running a full synch and nothing so far.

If I create a new role in the backend and run a synch the role gets to NWBC so data is getting from point A to point B, the problem is that some how the ruleset is not creating violations for new roles.  What else can I check?

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎06-11-2014 2:59 PM
0 Kudos

Hi all,

So it looks like the problem was on the functions.  The functions that we uploaded to the system have the Analysis Scope as "single system" but it needs to be "Cross System".  Thanks

Show replies
Show replies

Answers (4)

Answers (4)

Former Member
‎06-10-2014 10:43 PM
0 Kudos

So I have a few more updates.

So today I did some more testing and this is what I see.  I created a new risk and functions with SU01 and PFCG and after the approval process (risk approval, function approval) I executed the SOD again and the new violations are reflected.  Because of the result of the previous step I decided to re-Upload the rule set and then I got the message “No rule set selected”, I did several more synchs and generations and after a couple of hours it was working but still no luck, the system only shows some of the violations from the rule set.

Current status of the issue is:

1.  Only some violations are visible

2.  If I create a new risk and execute SOD, the new risks are reflected

3.  After re-Uploading ruleset and running synch and generate still only some violations are showing.


any other ideas of wat could be the problem?

Show replies
Show replies
alessandr0
Active Contributor
‎06-10-2014 8:04 AM
0 Kudos

Dear Jonathan,

did you check note 1824956?

http://service.sap.com/sap/support/notes/1824956

Regards,

Alessandro

Show replies
Show replies
Former Member
‎06-10-2014 10:34 PM
0 Kudos

Hi Alessandro,

We are on version 10.1 and that note is already included.

former_member144617
Participant
‎06-10-2014 6:38 AM
0 Kudos

Hi Tavrez,

It looks as a weird issue, but you can try by copying the risk id for the SU01, PFCG or create the new risk id in the new version of GRC same as in older version and then try to analyse , might be their is some issue related to the transport or migration of the rule sets.

Show replies
Show replies
Former Member
‎06-09-2014 9:33 PM
0 Kudos

Regenerate rules via NWBC.--> Rule Setup--> Access risks -->select all & generate rules, thanks

Regards,

Vijay

Show replies
Show replies
Former Member
‎06-09-2014 10:14 PM
0 Kudos

Hi Vijay,

Actually I have generated everything there is to generate multiple times, I have generated, Rule Set (NWBC and backend), Functions, Access Risks plus I have run Authorization Synch and Repository Synch and still same issue.

Ask a Question