cancel
Showing results for 
Search instead for 
Did you mean: 

SAP GRC AC 10 Rule Set Maintenance in DEV QA and PROD

Former Member
0 Kudos

Hello,

I have a question regarding the SAP GRC 10 rule sets maintenance.

For rule set maintenance in GRCAC 10 (SP13) we have uploaded and downloaded the ruleset file directly in Dev QA and Production. After ruleset generation, system is giving different rule id against each risk in each environment (DEV, QA .PROD) as this is per the SAP design.

Is there any solution so that we can keep the same rule id against each risk in generated ruleset  in each environment (DEV, QA and PROD)? I have referred the SAP note 1596574, however release version is different.

I am aware that ruleset can be transported in IMG -> GRC -> Access Risk Analysis -> SoD Rules -> Transport SoD. Now question is after transporting the ruleset from DEV environment, do we still need to re-generate the ruleset in QA and PROD. If Yes then what is the purpose of  “Transport SOD” option in SPRO configuration.

Also, I would appreciate if you can let me know the best practice for rule set maintenance in SAP GRC AC 10. Thanks

Regards,

Prashant R

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
0 Kudos

Hi,

Check out the following thread and blog below.

Answers (1)

Answers (1)

Former Member
0 Kudos

Hi Prashant,

Yes, you must generate the rule-sets in the follow on systems, which were captured and imported to the systems.

You can even compare with the table (GRACACTRULE) contents for the risk ID's across systems to make sure that you have the same risks across all the systems.

Hope you are clear with the solutions now, kindly let us know in case of any  issues.

Regards,

Ameet