Skip to Content
0
Feb 05, 2021 at 05:12 PM

SAP GRC Access Control: Web Dynpro and Rule set

196 Views Last edit Feb 05, 2021 at 05:17 PM 4 rev

Hi

Our SAP GRC rule set has flagged few SRM risks within a non SRM role in a non SRM system. They are SOD risks and the conflicting tcodes are of web dynpro type. However when the role is explored in AGR_TCODES and AGR_HIER tables such web dynpro tcodes can be found. Any idea why the are coming in the Access Risk Analysis?

Here is the list in ARA report for the role but not in the role.

[WDY]POWL Personal Object Work List

[WDY]/SAPSRM/IBO_WDAC_INBOX Personal Object Work List

[WDY]/SAPSRM/WDAC_I_FPM_OIF_PO_PURCH Personal Object Work List

[WDY]/SAPSRM/WDAC_I_FPM_OIF_SC_PROF Personal Object Work List

[WDY]/SAPSRM/WDAC_FPM_GAF_SC Personal Object Work List

[WDY]/SAPSRM/WDAC_I_FPM_OVP_CONF Personal Object Work List

[WDY]/SAPSRM/WDA_POWL_SC Personal Object Work List

[WDY]IBO_WDA_INBOX Lean Workflow Inbox Application

[WDY]/SAPSRM/WDAC_I_FPM_OIF_SC_PROF Lean Workflow Inbox Application

[WDY]/SAPSRM/WDAC_I_FPM_OIF_PO_PURCH Lean Workflow Inbox Application

[WDY]POWL Personal Object Work List

[WDY]/SAPSRM/IBO_WDAC_INBOX Lean Workflow Inbox Application

[WDY]/SAPSRM/WDAC_FPM_GAF_SC Lean Workflow Inbox Application

[WDY]/SAPSRM/WDA_POWL_SC Lean Workflow Inbox Application

[WDY]/SAPSRM/WDAC_I_FPM_OVP_CONF Lean Workflow Inbox Application

Thanks

Reza Ahoui