I have one question w.r.t. risk analysis of user while raising a request in ARQ.
I have noticed that, when a user is assigned 2 conflicting roles in a request (with "Valid From" and "Valid To" fields being the same), ARQ shows risk violations properly.
This is quite logical, because user is assigned conflicting roles within the same dates.
In another scenario, if a user is assigned 2 conflicting roles in a request (with "Valid From" and "Valid To" fields being different)
Time Administration : Valid From=15.06.2014 and Valid To= 31.12.2014
Payroll Administrator: Valid From=20.06.2014 and Valid To= 31.12.2014
ARA still shows as violations (in ARQ)! Though the "Valid From" dates are different.
Logically, user is not assigned these roles at the same time to cause a risk violations. However, system is showing violations.
May I know if validity dates are considered while performing risk analysis in ARQ? If no, then what could be the justification?