Skip to Content
0

System should not allow the FF Owner who approved the FF Request to also approve the FF Logs.

Nov 06, 2017 at 11:38 AM

46

avatar image
Former Member

Hi Experts,

Presently the GRC system allows the FF Owner who approved the FF Request to also approve the FF Logs. The requirement states now that another Owner or Controller must approve the FF Logs.

In addition, another Owner or Controller shall not be allowed to forward the FF Logs to the FF Owner who approved the FF Request.

Could you guys help us in what way should this be executed.

If we are able to execute it also help us with the Technical details that are to be kept in mind while doing so.

Best Regards !!

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Alessandro Banzer
Nov 07, 2017 at 08:04 PM
0

Dear Tapan,

I am not aware of a setting that checks for that. The only way I see to achieve that would be a detouring rule that checks who has approved the assignment and the log. In case it's the same user, route the request back and send an email notification that it needs to be approved by a second approver. Who that approver is, can either be selected by the current owner (e.g. with Forward), or by a system rule that does the routing e.g. to the security stage, monitor, or an alternate approver.

To set that up you need either someone who speaks ABAP or BRFPlus.

Hope this helps.

Cheers, Alessandro

Share
10 |10000 characters needed characters left characters exceeded