Skip to Content
0
Former Member
Apr 12, 2007 at 01:59 AM

CC 5.2. Does this rule work ?

17 Views

Gd morning guys, i've currently created a rule but due to insufficient authorization i was not able to test it out in the relevant roles but i would like to hear your advise on this sample/simple setup.

I want to create a rule such that a User should not be allowed to create a UserID and delete them. Therefore I created a Risk with 2 functions;

1. Create User. Objects include S_TCODE which is of course tcode 'Su01'. In addition, under S_USER_AUT, i granted 01 access which is to create User.

2. Delete User. Objects include S_TCODE which is of course tcode 'Su01'. In addition, under S_USER_AUT, i granted 06 access which is to delete User.

For this risk created, will 2 roles having the same t_code but different authoriation values, be flagged out as a risk?

Message was edited by:

Koh Boon Leng Peter