SAP GRC Access Control: Rule Set for Critical Perm...

reza_ahoui2 · ‎02-24-2020

Hi

We have created critical permission list in our rule set. Does any one recommend monitoring the following authorisations as a Critical Permission?

S_DATASET ACTVT 06 OR S_DATASET ACTVT 34 OR S_DATASET ACTVT A7 OR S_DATASET FILENAME '*' AND S_DATASET PROGRAM '*' AND

Or would this create a case for over-reporting?

Thanks

Reza Ahoui

madhusap · ‎02-24-2020

Hi Reza,

First thing you have to check is "what is the risk if a user or role has access to S_DATASET authorization object with mentioned values."

Will it be a risk with object alone or will it be a risk with a combination of Tcode? If the risk is only when a Tcode is given together with S_DATASET then you need to configure Critical Action risk and not Critical Permission risk.

Regards,

Madhu

SAP GRC Access Control: Rule Set for Critical Permission S_DATASET

Accepted Solutions (0)

Answers (1)

Answers (1)

Re: Tables on purchase invoice

Re: Error while specifying intervals and posting r...

Re: Approaches for deploy from sandbox to producti...

Approaches for deploy from sandbox to production e...

Group Reporting Rule Based COI - TP calculation