SAP GRC Rule Design Check in connected SAP systems

jha_gautam · ‎10-20-2019

Dear Gurus,

I may sound foolish by asking this samplar design scenario. Let say i have a GRC design as followed (NOT an SOD)
S_TCODE: SE38
AND
S_DEVELOP: ACTVT - 03
AND ACTVT - 16
AND OBJTYPE - PROG

In a role following way the authorizations are defined
S_TCODE: SE38
AND
S_DEVELOP: ACTVT - 03
AND OBJTYPE - PROG other authorization objects with any values
AND
S_DEVELOP : ACTVT - 16
AND OBJTYPE - PROG
Both S_DEVELOP have different authorization objects profile but part of the same role.
When rule design is checked, will this role show up. If so, how SAP is reaching to conclusion that ACTVT 16 and 03 here are in AND relationship when the authorization object profile itself is different.

vijayakumarsuth · ‎10-25-2019

Hi Gautam,

It depends how your design your rules,ex. you need to create two functions F1 and F2. in function F1 - have authorization S_DEVELOP ACTVT -03 and F2 - have authorization S_DEVELOP ACTVE -016. Then create risk R1 and assign both function F1 and F2, Generate rule and you can check the rules details which is expected to show risks

SAP GRC Rule Design Check in connected SAP systems

Accepted Solutions (0)

Answers (1)

Answers (1)

In addition please review these notes 1514544 , 1600667 , 1133589

Code de parrainage Bitget : qsk6 (bonus d'inscript...

Re: Asset transfer ABUMN - partial transfer of wro...

Unable to configure SAP CC Catalog webservice for ...

Re: Is there a report like FBL1N where I can displ...

Re: material plan price API