Skip to Content
avatar image
Former Member

Issue with Risk Analysis Results - Fewer roles create more risks?

Hello Experts,

We are facing a problem of risk analysis results. The details is we have four (Composite)roles need for a user, and in the risk analysis there're 7 risks. ( Attached Analysis-1.jpg,, Results-1.jpg)

Following I remove one role out of the four from the request, then there're 9 risks popped out ( one risk is gone, but three new risks surface...) (attached analysis-2.jpg, results-2.jpb). This does not make sense from role/authorization & SOD point of view, fewer access should only result in fewer SOD violation for sure... Does anyone see similar error/case before? can anyone help please?

This has been tested multiple times with all the sync jobs completed.


Analysis 1- four roles -



Analysis 2- three roles -


analysis-2.jpg (121.9 kB)
results-1.jpg (132.8 kB)
results-2.jpg (163.9 kB)
analysis-1.jpg (194.3 kB)
Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

0 Answers