on 03-21-2012 11:00 AM
Hi All,
I was trying to do the user risk analysis. In this regard, I did the following things:
1. Followed the document AC 10. Pre-Implementation From Post-Installation to first Risk Analysis"
2. Created a test user in the back end system
3. Created 2 roles: ZSU01 and ZPFCG containing Tcodes SU01 and PFCG respectively.
4. Assigned the above roles to test user.
5. Scheduled the background jobs on daily basis for synchrozing data with back end system.
6. Run a User Risk Analysis
However, on Multiple Selection screen, it does not display anything!!!
I am not sure it the analysis is completed. No results are displayed.
Can any one help me?
Regards,
Faisal
Hi Faisal,
Please check and confirm if you have generated the Rules.
To check if the rules generated:
NWBC-->Rule Setup--> Generated Rules--> Access Rule Summary
Or
NWBC-->Reports & Analytics-->Access Rule Library.
Regards,
Ajesh.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Ajesh,
Thanks for your reply and I am extremely sorry for replying very lately
Now I have generated the rules from the location you have shown. Earlier, I had generated them from GRC system via SPRO. However, this was not generated properly it seems.
Thanks once again for guiding me in a proper direction.
Regards,
Faisal
It's probably worth pointing out that you should have "Critical Actions" selected as the risk analysis type for the example above, as it is likely SU01 and PFCG are classified as Critical Actions within the Rule Set.
I am guessing you performed a risk analysis for "SOD" risks.
Good luck.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Faisal,
What Support Pack of AC10 are you on? If you are previous to SP07, you need to REMOVE the RISK LEVEL line as it defaults to CRITICAL or to what ever you have entered into 1024 (hence why I wanted your Selection Screen) if you want to get ALL Risks. After SP07, then you have the abiltiy to select * as the default risk level in parameter 1024.
thanks.
Kevin
Faisal:
Ok, just needed to make sure. Now, can you re-run your analysis, but take a screen shot of the screen where you are making you selections. I would suggest that you mark each box in TYPE (Action, Permission, Critical Action, Critial Permission, Critical Role/Profile) and see if anything shows up for any of the types. At a minimum, you should get this at the Action Level for risk B019 if you are using delivered rule set.
Also, as Ajesh said, confirm that you have generated the rules.
Thanks,
Kevin
Hi Faisal,
Can you run the following two steps again and then run the risk analysis.
SPRO-->Common Component Settings-->Integration Frame work-->Maintain Connectors and Connection Types-->Define Conn Groups--> Here assign ERP System to SAP_BAS_LG, SAP_ECC_LG, SAP_HR_LG..
Then...
SPRO-->GRC-->AC-->ARA-->SOD Rules--> Generate SOD Rules
If possible give a screenshot of your risk library after this.
Regards,
Ajesh.
Can anybody help me?
Regards,
Faisal
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.