Skip to Content
avatar image
Former Member

GRC Access Control Rule Set

Hello GRC community,

I have a general question to GRC AC Rule Sets: It is usually used in GRC AC only one standard Role

Set u2013 Global. However, it is possible a further set of rules to put in.

In which case is it required another Rule set?

Please appreciate your inputs/ scenarios about this topic.

Thanks a lot

S. Singer

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • avatar image
    Former Member
    Jun 06, 2011 at 04:22 AM

    Hi Sergej,

    If you want to keep SAP Standard Ruleset, but also want to keep your organization specific ruleset with all customized tcodes, then you need to keep more than one ruleset. Default ruleset can be only one in AC 5.3 but in AC10, they have given flexibility to have more than one ruleset.

    I have done implementations, they have kept standard ruleset for reference as time-to-time they can check risks against this ruleset but their default ruleset is customized one.

    Regards,

    Sabita

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Jun 06, 2011 at 09:21 AM

    Hi Sergej,

    I agree to Sabita.

    But maybe you also have another ruleset for your DEV or QA environment, if you want to run a risk analysis.

    The restrictions are in AC 5.3 with the default ruleset.

    Best regards

    Dirk

    Add comment
    10|10000 characters needed characters exceeded