on 09-19-2019 6:06 PM
Hello everyone,
We are using SAP GRC 10 to administrate FF accounts for SAP ECC, GRC, and MDG systems and I wanted to know if FF logs can be modified in GRC, what accounts or roles can perform this activity and if there is a way to prevent it.
Thanks.
Hi Madhu,
Thanks for your response. I was doing an inquiry as part of an audit and the information I gather so far is that apparently if a combination of access to transactions SM30, SE16, SE16N, SE17, SM31, SM34 and corresponding security objects and authorization values is required for this provide the ability to modify SAP tables. OSS Notes 1434284 and 1541577.
Also, they pointed me to the following tables GRFNMWRTAPPR, GRFNMWRTINST, GRACFFLOG, GRACFFREPMAPP FFLOG , GRACACTUSAGE.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Mauricio,
GRC system will read the logs from target systems and store them in various log tables in GRC and the same will be shown in the reports and FF log review requests. Following are the tables and these cannot be modified to change FF logs. Have you come across any such thing happening?
GRACAUDITLOG
GRACCHANGELOG
GRACOSCMDLOG
GRACACTUSAGE
GRACSYSTEMLOG
Regards,
Madhu
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
6 | |
5 | |
2 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.