Skip to Content
avatar image
Former Member

System should not allow the FF Owner who approved the FF Request to also approve the FF Logs.

Hi Experts,

Presently the GRC system allows the FF Owner who approved the FF Request to also approve the FF Logs. The requirement states now that another Owner or Controller must approve the FF Logs.

In addition, another Owner or Controller shall not be allowed to forward the FF Logs to the FF Owner who approved the FF Request.

Could you guys help us in what way should this be executed.

If we are able to execute it also help us with the Technical details that are to be kept in mind while doing so.

Best Regards !!

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Nov 07, 2017 at 08:04 PM

    Dear Tapan,

    I am not aware of a setting that checks for that. The only way I see to achieve that would be a detouring rule that checks who has approved the assignment and the log. In case it's the same user, route the request back and send an email notification that it needs to be approved by a second approver. Who that approver is, can either be selected by the current owner (e.g. with Forward), or by a system rule that does the routing e.g. to the security stage, monitor, or an alternate approver.

    To set that up you need either someone who speaks ABAP or BRFPlus.

    Hope this helps.

    Cheers, Alessandro

    Add comment
    10|10000 characters needed characters exceeded