on 09-13-2018 8:19 PM
Hello Experts!
The 4-eyes principle works when processing Actions, for example to prevent the developer from being the same as the tester.
However, we want to implement a check to prevent an import to production from being processed by the developer of the ChaRM. For example, if a Normal CD (ZMMJ) was assigned to a developer from our internal Basis team, he would also have the authorization to process imports for Normal change documents using the tasklist. We don't want him to be allowed to import his own change if he was assigned as the developer.
Has anyone implemented this type of Segregation of Duties check in the tasklist?
Thank you in advance for your help!
Robyn
The developer should not be allowed to run imports into production, in the standard authorization model of ChaRM.
You could protect the status 'import into production' with an authorization code and not assign the authorization values to the developer, or protect the PPF actions with authorizations.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
7 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.