cancel
Showing results for 
Search instead for 
Did you mean: 

SAP GRC FF Logs - Modification and Protection

former_member808094
Discoverer
0 Kudos

Hello everyone,

We are using SAP GRC 10 to administrate FF accounts for SAP ECC, GRC, and MDG systems and I wanted to know if FF logs can be modified in GRC, what accounts or roles can perform this activity and if there is a way to prevent it.

Thanks.

Accepted Solutions (0)

Answers (2)

Answers (2)

former_member808094
Discoverer
0 Kudos

Hi Madhu,

Thanks for your response. I was doing an inquiry as part of an audit and the information I gather so far is that apparently if a combination of access to transactions SM30, SE16, SE16N, SE17, SM31, SM34 and corresponding security objects and authorization values is required for this provide the ability to modify SAP tables. OSS Notes 1434284 and 1541577.

Also, they pointed me to the following tables GRFNMWRTAPPR, GRFNMWRTINST, GRACFFLOG, GRACFFREPMAPP FFLOG , GRACACTUSAGE.

madhusap
Active Contributor
0 Kudos

Hi Mauricio,

GRC system will read the logs from target systems and store them in various log tables in GRC and the same will be shown in the reports and FF log review requests. Following are the tables and these cannot be modified to change FF logs. Have you come across any such thing happening?

GRACAUDITLOG

GRACCHANGELOG

GRACOSCMDLOG

GRACACTUSAGE

GRACSYSTEMLOG

Regards,

Madhu